Lucene search
GoogleOSV:DLA-229-1HistoryMay 27, 2015 - 12:00 a.m.
libnokogiri-ruby - security update
2015-05-2700:00:00
Google
osv.dev
11
0.002 Low
EPSS
Percentile
55.7%
An XML eXternal Entity (XXE) flaw was found in Nokogiri, a Ruby gem for
parsing HTML, XML, and SAX. Using external XML entities, a remote attacker
could specify a URL in a specially crafted XML that, when parsed, would
cause a connection to that URL to be opened.
This update enables the nonet option by default (and provides new
methods to disable default options if needed).
| CPE | Name | Operator | Version |
|---|---|---|---|
| libnokogiri-ruby | eq | 1.4.0-4 |
References
Related
nessus
nessus
Debian DLA-229-1 : libnokogiri-ruby security update
2015-05-28 00:00:00
Apple TV < 7.2.1 Multiple Vulnerabilities
2016-04-04 00:00:00
Mac OS X Multiple Vulnerabilities (Security Update 2015-006)
2015-08-17 00:00:00
cve
cve
CVE-2012-6685
2020-02-19 15:15:11
debian
debian
[SECURITY] [DLA 229-1] libnokogiri-ruby security update
2015-05-27 18:03:10
prion
prion
Design/Logic Flaw
2020-02-19 15:15:00
openvas
openvas
Debian: Security Advisory (DLA-229-1)
2023-03-08 00:00:00
osv
osv
Nokogiri is vulnerable to XML External Entity (XXE) attack
2022-04-23 00:40:45
github
github
Nokogiri is vulnerable to XML External Entity (XXE) attack
2022-04-23 00:40:45
cvelist
cvelist
CVE-2012-6685
2020-02-19 14:41:27
nvd
nvd
CVE-2012-6685
2020-02-19 15:15:11
debiancve
debiancve
CVE-2012-6685
2020-02-19 15:15:11
ubuntucve
ubuntucve
CVE-2012-6685
2020-02-19 00:00:00
rubygems
rubygems
CVE-2012-6685 rubygem-nokogiri: XML eXternal Entity (XXE) flaw
2012-06-07 20:00:00
redhat
redhat
apple
apple
About the security content of Apple TV 7.2.1
2016-02-25 00:00:00
About the security content of Apple TV 7.2.1 - Apple Support
2017-01-23 03:54:31
securityvulns
securityvulns
APPLE-SA-2015-08-13-3 iOS 8.4.1
2015-08-17 00:00:00
Apple iOS multiple security vulnerabilities
2015-08-17 00:00:00
APPLE-SA-2015-08-13-2 OS X Yosemite v10.10.5 and Security Update 2015-006
2015-08-17 00:00:00