CVE-2019-5953

CWE-787 — Out-of-bounds Write CWE-119 — Buffer Overflow12 documents8 sources

Severity

9.8CRITICAL

EPSS

1.7%

top 17.57%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

GNU Wget THE GNU Projec GNU Wget

Timeline

PublishedMay 17

Latest updateMay 24

Description

Buffer overflow in GNU Wget 1.20.1 and earlier allows remote attackers to cause a denial-of-service (DoS) or may execute an arbitrary code via unspecified vectors.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages4 packages

▶Debianwget< 1.20.1-1.1+3

▶Ubuntuwget< 1.15-1ubuntu1.14.04.5+2

▶NVDgnu/wget1.20.1

▶CVEListV5the_gnu_projec/gnu_wget1.20.1 and earlier

🔴Vulnerability Details

GHSA

GHSA-fhwx-v7qv-pjh3: Buffer overflow in GNU Wget 1↗2022-05-24

▶

OSV

vim vulnerabilities↗2019-06-11

▶

OSV

CVE-2019-5953: Buffer overflow in GNU Wget 1↗2019-05-17

▶

CVEList

CVE-2019-5953: Buffer overflow in GNU Wget 1↗2019-05-17

▶

OSV

wget vulnerabilities↗2019-04-08

▶

📋Vendor Advisories

Ubuntu

Wget vulnerability↗2019-04-09

▶

Ubuntu

Wget vulnerabilities↗2019-04-08

▶

Red Hat

wget: do_conversion() heap-based buffer overflow vulnerability↗2019-04-03

▶

Debian

CVE-2019-5953: wget - Buffer overflow in GNU Wget 1.20.1 and earlier allows remote attackers to cause ...↗2019

▶

💬Community

Bugzilla

CVE-2019-5953 wget: do_conversion() heap-based buffer overflow vulnerability [fedora-all]↗2019-04-05

▶

Bugzilla

CVE-2019-5953 wget: do_conversion() heap-based buffer overflow vulnerability↗2019-04-03

▶