Advisory ROSA-SA-2026-3298

Software: wget 1.21.3 Operating System: ROSA-CHROME Unaffected versions: = wget-1.21.3-2 Affected versions: wget-1.21.3-2 CVE-ID: CVE-2024-38428 BDU-ID: 2024-04683 CVE-Crit: Medium CVE-DESCRIPTION: The vulnerability in the userinfo URI of the GNU Wget download manager is related to insecure...

Astra Linux - уязвимость в busybox

Busybox contains a vulnerability related to SSL certificate validation. This vulnerability exists in the “busybox wget” applet, and it can lead to the execution of arbitrary code. This vulnerability appears to be exploitable by simply downloading any file over an HTTPS connection using “busybox...

OESA-2026-1881 busybox security update

BusyBox combines tiny versions of many common UNIX utilities into a single small executable. It provides replacements for most of the utilities you usually find in GNU fileutils, shellutils, etc. It provides a fairly complete environment for any small or embedded system. Security Fixes: BusyBox...

EulerOS Virtualization 2.10.1 : wget (EulerOS-SA-2026-1151)

According to the versions of the wget package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Applications that use Wget to access a remote resource using shorthand URLs and pass arbitrary user credentials in the URL are...

EulerOS Virtualization 2.10.0 : wget (EulerOS-SA-2026-1203)

According to the versions of the wget package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Applications that use Wget to access a remote resource using shorthand URLs and pass arbitrary user credentials in the URL are...

CVE-2025-69194 affecting package wget for versions less than 2.1.0-7

CVE-2025-69194 affecting package wget for versions less than 2.1.0-7. A patched version of the package is available...

MiracleLinux 8 : wget-1.19.5-12.el8_10 (AXSA:2024-8669:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8669:01 advisory. wget: Misinterpretation of input may lead to improper behavior CVE-2024-38428 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : wget-1.14-18.1.0.1.el7.AXS7 (AXSA:2024-8759:03)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8759:03 advisory. CVE-2024-38428: properly re-implement userinfo parsing rfc2396 CVEs: CVE-2024-38428 url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo...

MiracleLinux 9 : wget-1.21.1-8.el9_4 (AXSA:2024-8748:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2024-8748:02 advisory. wget: Misinterpretation of input may lead to improper behavior CVE-2024-38428 Tenable has extracted the preceding description block directly from the...

MiracleLinux 7 : wget-1.14-15.el7.1 (AXSA:2017-2381:03)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2017-2381:03 advisory. A stack-based and a heap-based buffer overflow flaws were found in wget when processing chunked encoded HTTP responses. By tricking an unsuspecting...

MiracleLinux 7 : wget-1.14-18.el7.1 (AXSA:2019-3884:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2019-3884:01 advisory. Security Fix - wget CVE-2019-5953 CVEJVNhttp://jvndb.jvn.jp/ Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 7 : wget-1.14-13.el7 (AXSA:2016-1111:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2016-1111:01 advisory. GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you ar...

TencentOS Server 4: wget (TSSA-2024:0995)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0995 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

EUVD-2018-13037

Malware in sbrugna...

EUVD-2010-2264

Malware in sbrugna...

EUVD-2017-15564

Malware in sbrugna...

EUVD-2002-1547

Malware in sbrugna...

EUVD-2009-3472

Malware in sbrugna...

EUVD-2004-1481

Malware in sbrugna...

EUVD-2024-33431

Malicious code in bioql PyPI...