Lucene search
WolfiWOLFI:CVE-2024-35176HistorySep 30, 2024 - 3:53 a.m.
CVE-2024-35176 vulnerabilities
2024-09-3003:53:08
packages.wolfi.dev
64
cve-2024-35176
vulnerabilities
ruby3.2-rexml
unix
packages
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
5.9
Confidence
High
EPSS
0
Percentile
15.5%
Vulnerabilities for packages: logstash, ruby3.2-rexml, ruby, jruby, kube-fluentd-operator
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Wolfi | unknown | x86_64 | jruby | <= 9.4.8.0-r0 | jruby-9.4.8.0-r0.apk |
| Wolfi | unknown | aarch64 | jruby | <= 9.4.8.0-r0 | jruby-9.4.8.0-r0.apk |
| Wolfi | unknown | x86_64 | kube-fluentd-operator | <= 1.18.2-r11 | kube-fluentd-operator-1.18.2-r11.apk |
| Wolfi | unknown | aarch64 | kube-fluentd-operator | <= 1.18.2-r11 | kube-fluentd-operator-1.18.2-r11.apk |
| Wolfi | unknown | x86_64 | logstash | <= 8.15.0-r0 | logstash-8.15.0-r0.apk |
| Wolfi | unknown | aarch64 | logstash | <= 8.15.0-r0 | logstash-8.15.0-r0.apk |
| Wolfi | unknown | x86_64 | ruby | <= 3.1.6-r2 | ruby-3.1.6-r2.apk |
| Wolfi | unknown | aarch64 | ruby | <= 3.1.6-r2 | ruby-3.1.6-r2.apk |
| Wolfi | unknown | x86_64 | ruby | <= 3.2.4-r4 | ruby-3.2.4-r4.apk |
| Wolfi | unknown | aarch64 | ruby | <= 3.2.4-r4 | ruby-3.2.4-r4.apk |
Related
cbl_mariner
cbl_mariner
CVE-2024-35176 affecting package ruby for versions less than 3.3.3-1
2024-08-25 15:13:42
osv
osv
CGA-w995-jp2x-p8gc
2024-06-06 12:29:43
CGA-98r3-6hf8-2c4m
2024-06-06 12:25:24
CGA-2583-v855-mmq2
2024-06-06 12:20:38
redhat
redhat
(RHSA-2024:5338) Low: pcs security update
2024-08-13 18:14:29
(RHSA-2024:4499) Moderate: ruby security update
2024-07-11 11:24:57
cgr
cgr
CVE-2024-35176 vulnerabilities
2024-05-19 03:07:16
redhatcve
redhatcve
CVE-2024-35176
2024-06-12 00:40:06
cve
cve
CVE-2024-35176
2024-05-16 16:15:09
vulnrichment
vulnrichment
CVE-2024-35176 REXML contains a denial of service vulnerability
2024-05-16 15:13:25
cvelist
cvelist
CVE-2024-35176 REXML contains a denial of service vulnerability
2024-05-16 15:13:25
nessus
nessus
Fedora 40 : ruby (2024-93575091aa)
2024-07-25 00:00:00
RHEL 8 : pcs (RHSA-2024:5338)
2024-08-14 00:00:00
CBL Mariner 2.0 Security Update: ruby / rubygem-rexml (CVE-2024-35176)
2024-07-03 00:00:00
hackerone
hackerone
Internet Bug Bounty: [CVE-2024-35176] DoS vulnerability in REXML
2024-08-07 20:47:47
ibm
ibm
fedora
fedora
[SECURITY] Fedora 40 Update: ruby-3.3.4-11.fc40
2024-07-19 01:46:40
[SECURITY] Fedora 39 Update: ruby-3.2.5-183.fc39
2024-09-20 00:44:03
github
github
REXML contains a denial of service vulnerability
2024-05-16 17:44:04
nvd
nvd
CVE-2024-35176
2024-05-16 16:15:09
debiancve
debiancve
CVE-2024-35176
2024-05-16 16:15:09
rubygems
rubygems
REXML contains a denial of service vulnerability
2024-05-15 21:00:00
almalinux
almalinux
Low: pcs security update
2024-08-13 00:00:00
Moderate: ruby security update
2024-07-11 00:00:00
oraclelinux
oraclelinux
pcs security update
2024-08-16 00:00:00
ruby security update
2024-07-15 00:00:00
veracode
veracode
Denial Of Service (DoS)
2024-05-21 07:21:39
openvas
openvas
Fedora: Security Advisory (FEDORA-2024-93575091aa)
2024-08-06 00:00:00
Fedora: Security Advisory (FEDORA-2024-2fb325d068)
2024-09-20 00:00:00
rocky
rocky
ruby security update
2024-07-15 12:17:49
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
5.9
Confidence
High
EPSS
0
Percentile
15.5%
Related for WOLFI:CVE-2024-35176