PT-2021-5813 · Ruby+9 · Rexml+10

Juho Nurminen

·

Published

2021-04-12

·

Updated

2025-12-12

·

CVE-2021-28965

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Name of the Vulnerable Software and Affected Versions REXML gem versions prior to 3.2.5 in Ruby versions prior to 2.6.7 REXML gem versions prior to 3.2.5 in Ruby versions 2.7.x prior to 2.7.3 REXML gem versions prior to 3.2.5 in Ruby versions 3.x prior to 3.0.1
Description The issue is related to the incorrect handling of XML round-trip issues in the REXML gem, which can lead to the production of an incorrect document after parsing and serializing. This can potentially allow a remote attacker to impact data integrity.
Recommendations For Ruby versions prior to 2.6.7, update the REXML gem to version 3.2.5 or later. For Ruby versions 2.7.x prior to 2.7.3, update the REXML gem to version 3.2.5 or later. For Ruby versions 3.x prior to 3.0.1, update the REXML gem to version 3.2.5 or later.

Exploit

Fix

XXE

Weakness Enumeration

CWE-115CWE-611

Related Identifiers

ALSA-2021:2584
ALSA-2021:2587
ALSA-2021:2588
ALSA-2021_2584
ALSA-2025_16880
ALT-PU-2021-1710
ALT-PU-2021-2720
ALT-PU-2022-2533
ALT-PU-2022-2699
AZL-6860
BDU:2022-00302
BIT-RUBY-2021-28965
BIT-RUBY-MIN-2021-28965
CESA-2021_2584
CESA-2021_2587
CESA-2021_2588
CVE-2021-28965
DSA-5066-1
GHSA-8CR8-4VFW-MR7H
MGASA-2021-0579
OESA-2021-1259
OPENSUSE-SU-2021:0607-1
OPENSUSE-SU-2021_0607-1
OPENSUSE-SU-2024:11310-1
OPENSUSE-SU-2024:11311-1
OPENSUSE-SU-2024:11786-1
OPENSUSE-SU-2024:12712-1
OPENSUSE-SU-2024:13623-1
OPENSUSE-SU-2025:14621-1
OPENSUSE-SU-2025:15819-1
RHSA-2021:2104
RHSA-2021:2229
RHSA-2021:2230
RHSA-2021:2584
RHSA-2021:2587
RHSA-2021:2588
RHSA-2021_2584
RHSA-2021_2587
RHSA-2021_2588
RHSA-2022:0581
RHSA-2022:0582
RHSA-2026:7305
RHSA-2026:7307
RHSA-2026:8838
RLSA-2021:2584
RLSA-2021:2587
RLSA-2021:2588
SUSE-SU-2021:1280-1
SUSE-SU-2021_1280-1
USN-4922-1
USN-4922-2

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Rexml
Red Hat
Rocky Linux
Ruby
Suse
Ubuntu