Lucene search
K

33 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.8 views

TencentOS Server 3: wget (TSSA-2023:0139)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0139 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.8CVSS6.6AI score0.00659EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2018-20483

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - setfilemetadata in xattr.c in GNU Wget before 1.20.1 stores a file's origin URL in the user.xdg.origin.url metadata attribute of the extended attributes of the...

7.8CVSS6.5AI score0.00659EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/01/31 11:3 p.m.32 views

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in wget

Summary IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of wget CVE-2018-20483 Vulnerability Details CVEID:CVE-2018-20483 DESCRIPTION: GNU Wget could allow a local authenticated attacker to obtain sensitive information, caused by the storing of the origin URL in the...

7.8CVSS7.9AI score0.00659EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2019-0015)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.8AI score0.00659EPSS
Exploits1References4
Rosalinux
Rosalinux
added 2021/07/02 6:19 p.m.49 views

Advisory ROSA-SA-2021-1996

Software: wget 1.14 OS: Cobalt 7.9 CVE-ID: CVE-2016-7098 CVE-Crit: HIGH CVE-DESC: The race condition in wget 1.17 and earlier, when used in recursive or mirror mode to download a single file, may allow remote servers to bypass perceived access list restrictions by leaving the HTTP connection open...

8.1CVSS8.3AI score0.07499EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2021/01/29 12:0 a.m.98 views

CentOS 8 : curl (CESA-2019:3701)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:3701 advisory. - curl: NTLM type-2 heap out-of-bounds buffer read CVE-2018-16890 - wget: Information exposure in setfilemetadata function in xattr.c CVE-2018-20483 -...

9.8CVSS6.7AI score0.12771EPSS
Exploits3References5
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for wget (EulerOS-SA-2019-1663)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.8AI score0.00659EPSS
Exploits1References2
Oracle linux
Oracle linux
added 2019/11/14 12:0 a.m.46 views

curl security and bug fix update

7.61.1-11 - rebuild with updated annobin to prevent Execshield RPMDiff check from failing 7.61.1-10 - fix SMTP end-of-response out-of-bounds read CVE-2019-3823 - fix NTLMv2 type-3 header stack buffer overflow CVE-2019-3822 - fix NTLM type-2 out-of-bounds buffer read CVE-2018-16890 - xattr: strip...

9.8CVSS1.7AI score0.12771EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2019/11/06 12:0 a.m.39 views

RHEL 8 : curl (RHSA-2019:3701)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:3701 advisory. The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTT...

9.8CVSS6.9AI score0.12771EPSS
Exploits3References13
Tenable Nessus
Tenable Nessus
added 2019/06/27 12:0 a.m.40 views

EulerOS 2.0 SP8 : wget (EulerOS-SA-2019-1663)

According to the version of the wget package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - setfilemetadata in xattr.c in GNU Wget before 1.20.1 stores a file's origin URL in the user.xdg.origin.url metadata attribute of the extended attribut...

7.8CVSS6.7AI score0.00659EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/06/25 12:0 a.m.45 views

Photon OS 1.0: Wget PHSA-2019-1.0-0237

An update of the wget package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-1.0-0237. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid126204;...

9.8CVSS7.8AI score0.05751EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2019/06/10 12:0 a.m.38 views

Fedora Update for curl FEDORA-2019-697de0501f

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8AI score0.49739EPSS
Exploits5References2
Cloud Foundry
Cloud Foundry
added 2019/04/25 12:0 a.m.36 views

USN-3943-1: Wget vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description It was discovered that Wget incorrectly handled certain inputs. An attacker could possibly use this issue to access sensitive information. This issue only...

9.8CVSS9.5AI score0.05751EPSS
Exploits1
OpenVAS
OpenVAS
added 2019/04/10 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-3943-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.9AI score0.05751EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/04/10 12:0 a.m.41 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Wget vulnerabilities (USN-3943-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3943-1 advisory. It was discovered that Wget incorrectly handled certain inputs. An attacker could possibly use this issue to access sensitive...

9.8CVSS7.9AI score0.05751EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2019/04/08 11:52 p.m.113 views

USN-3943-1: Wget vulnerabilities

It was discovered that Wget incorrectly handled certain inputs. An attacker could possibly use this issue to access sensitive information. This issue only affected Ubuntu 18.04 LTS and Ubuntu 18.10. CVE-2018-20483 Kusano Kazuhiko discovered that Wget incorrectly handled certain inputs. An attacke...

9.8CVSS7.7AI score0.05751EPSS
Exploits1
Amazon
Amazon
added 2019/02/07 12:0 a.m.245 views

Medium: curl

Issue Overview: setfilemetadata in xattr.c in GNU Wget stores a file's origin URL in the user.xdg.origin.url metadata attribute of the extended attributes of the downloaded file, which allows local users to obtain sensitive information e.g., credentials contained in the URL by reading this...

9.8CVSS9AI score0.06433EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2019/01/24 12:0 a.m.41 views

Fedora 29 : curl (2019-427a0ba9e3)

xattr: strip credentials from any URL that is stored CVE-2018-20483 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

7.8CVSS6.6AI score0.00659EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/01/22 12:0 a.m.121 views

openSUSE Security Update : wget (openSUSE-2019-57)

This update for wget fixes the following issues : Security issue fixed : - CVE-2018-20483: Fixed an information disclosure through file metadata bsc1120382 This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive tex...

7.8CVSS6.5AI score0.00659EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2019/01/18 12:0 a.m.26 views

openSUSE: Security Advisory for wget (openSUSE-SU-2019:0057-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS8.8AI score0.00659EPSS
Exploits1References2
Rows per page
Query Builder