漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
REXML has a DoS condition when parsing malformed XML file
Vulnerability Description
REXML is an XML toolkit for Ruby. The REXML gems from 3.3.3 to 3.4.1 has a DoS vulnerability when parsing XML containing multiple XML declarations. If you need to parse untrusted XMLs, you may be impacted to these vulnerabilities. The REXML gem 3.4.2 or later include the patches to fix these vulnerabilities.
CVSS Information
N/A
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
REXML 资源管理错误漏洞
Vulnerability Description
REXML是Ruby开源的一个用于 Ruby 的 XML 工具包。 REXML 3.3.3版本至3.4.1版本存在资源管理错误漏洞,该漏洞源于解析包含多个XML声明的XML时处理不当,可能导致拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A