CVE-2021-28965 in Ruby Programming Language and Fedora Project Products
Published on April 21, 2021

The REXML gem before 3.2.5 in Ruby before 2.6.7, 2.7.x before 2.7.3, and 3.x before 3.0.1 does not properly address XML round-trip issues. An incorrect document can be produced after parsing and serializing.

Vendor Advisory NVD

Products Associated with CVE-2021-28965

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-28965 are published in these products:

Ruby Programming Language Rexml

Ruby Programming Language Ruby Language

Fedora Project Fedora

Exploit Probability

EPSS

0.36%

Percentile

57.87%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-28965 in Ruby Programming Language and Fedora Project ProductsPublished on April 21, 2021

Products Associated with CVE-2021-28965

Exploit Probability

CVE-2021-28965 in Ruby Programming Language and Fedora Project Products
Published on April 21, 2021