wget (SUSE:Linux Enterprise Server 12 SP2) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server 12 SP2 package wget, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2017-13089 — CVSS 8.8 (high): The http.c:skip_short_body() function is called in some circumstances, such as when processing redirects. When the response is sent chunked…
CVE-2017-13090 — CVSS 8.8 (high): The retr.c:fd_read_body() function is called when processing OK responses. When the response is sent chunked in wget before 1.19.2, the…
CVE-2016-7098 — CVSS 8.1 (high): Race condition in wget 1.17 and earlier, when used in recursive or mirroring mode to download a single file, might allow remote servers to…
CVE-2017-6508 — CVSS 6.1 (medium): CRLF injection vulnerability in the url_parse function in url.c in Wget through 1.19.1 allows remote attackers to inject arbitrary HTTP…