CVE-2013-6460

Nokogiri gem 1.5.x has Denial of Service via infinite loop when parsing XML documents
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:nokogiri:nokogiri:*:*:*:*:*:*:*:*
cpe:2.3:a:nokogiri:nokogiri:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:a:redhat:cloudforms_management_engine:5.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_mrg:2.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openstack:3.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openstack:4.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:satellite:6.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:subscription_asset_manager:-:*:*:*:*:*:*:*

Information

Published : 2019-11-05 07:15

Updated : 2021-07-15 12:16


NVD link : CVE-2013-6460

Mitre link : CVE-2013-6460


JSON object : View

CWE
CWE-776

Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')

Advertisement

dedicated server usa

Products Affected

redhat

  • enterprise_mrg
  • openstack
  • satellite
  • cloudforms_management_engine
  • subscription_asset_manager

nokogiri

  • nokogiri

debian

  • debian_linux