wget (SUSE:Linux Enterprise Server 12 SP3) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Server 12 SP3 package wget, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2019-5953 — CVSS 9.8 (critical): Buffer overflow in GNU Wget 1.20.1 and earlier allows remote attackers to cause a denial-of-service (DoS) or may execute an arbitrary code…
CVE-2017-13089 — CVSS 8.8 (high): The http.c:skip_short_body() function is called in some circumstances, such as when processing redirects. When the response is sent chunked…
CVE-2017-13090 — CVSS 8.8 (high): The retr.c:fd_read_body() function is called when processing OK responses. When the response is sent chunked in wget before 1.19.2, the…
CVE-2018-0494 — CVSS 6.5 (medium): GNU Wget before 1.19.5 is prone to a cookie injection vulnerability in the resp_new function in http.c via a \r\n sequence in a…