Buffer Overflow in GNU Wget Affects Multiple Versions
CVE-2019-5953

9.8CRITICAL

Key Information:

Vendor
The Gnu Projec
Status
Gnu Wget
Vendor
CVE Published:
17 May 2019

Summary

A buffer overflow vulnerability exists in GNU Wget versions 1.20.1 and earlier, which can be exploited by remote attackers to trigger a denial-of-service condition. This flaw has the potential to allow attackers to execute arbitrary code through unspecified vectors, highlighting the need for users and administrators to ensure they are using patched and updated versions of the software to mitigate these risks.

Affected Version(s)

GNU Wget 1.20.1 and earlier

References

https://www.gnu.org/software/wget/
x_refsource_MISC
http://jvn.jp/en/jp/JVN25261088/index.html
x_refsource_MISC
https://support.f5.com/csp/article/K14560101
x_refsource_CONFIRM

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.