Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')
CVE-2024-43398
Summary
REXML is an XML toolkit for Ruby. In rexml gem versions 3.1.7.3 through 3.3.5 have a Denial-of-service vulnerability when it parses an XML that has many deep elements that have the same local name attributes. If you need to parse untrusted XMLs with a tree parser API like "REXML::Document.new", you may be impacted by this vulnerability. This vulnerability is unaffected if you use other parser APIs, such as the stream parser API and the SAX2 parser API.
- HIGH
- NETWORK
- NONE
- UNCHANGED
- NONE
- NONE
- NONE
- HIGH
CWE-776 - Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')
The software uses XML documents and allows their structure to be defined with a Document Type Definition (DTD), but it does not properly control the number of recursive definitions of entities.
References
Advisory Timeline
- Published