CVE-2024-38428

url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo subcomponent is misinterpreted to be part of the host subcomponent.

CVSS v3 9.1 CRITICAL

9.1^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://git.savannah.gnu.org/cgit/wget.git/commit/?id=ed0c7c7e0e8f7298352646b2fd6e06a11e242ace	Mailing List Patch
https://lists.gnu.org/archive/html/bug-wget/2024-06/msg00005.html	Mailing List Patch

Configurations

Configuration 1 (hide)

cpe:2.3:a:gnu:wget:*:*:*:*:*:*:*:*

History

08 Aug 2024, 15:05

Type	Values Removed	Values Added
References	~~() https://git.savannah.gnu.org/cgit/wget.git/commit/?id=ed0c7c7e0e8f7298352646b2fd6e06a11e242ace -~~	() https://git.savannah.gnu.org/cgit/wget.git/commit/?id=ed0c7c7e0e8f7298352646b2fd6e06a11e242ace - Mailing List, Patch
References	~~() https://lists.gnu.org/archive/html/bug-wget/2024-06/msg00005.html -~~	() https://lists.gnu.org/archive/html/bug-wget/2024-06/msg00005.html - Mailing List, Patch
First Time		Gnu Gnu wget
CPE		cpe:2.3:a:gnu:wget::::::::
CWE		CWE-436
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.1

17 Jun 2024, 12:42

Type	Values Removed	Values Added
Summary		(es) url.c en GNU Wget hasta 1.24.5 maneja mal los puntos y comas en el subcomponente de información de usuario de un URI y, por lo tanto, puede haber un comportamiento inseguro en el que los datos que se suponía que estaban en el subcomponente de información de usuario se malinterpretan como parte del subcomponente del host.

16 Jun 2024, 03:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-06-16 03:15

Updated : 2024-10-28 21:35

NVD link : CVE-2024-38428

Mitre link : CVE-2024-38428

CVE.ORG link : CVE-2024-38428

JSON object : View

Products Affected

gnu

wget

CWE

CWE-436

Interpretation Conflict

{"id": "CVE-2024-38428", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 3.9}]}, "published": "2024-06-16T03:15:08.430", "references": [{"url": "https://git.savannah.gnu.org/cgit/wget.git/commit/?id=ed0c7c7e0e8f7298352646b2fd6e06a11e242ace", "tags": ["Mailing List", "Patch"], "source": "cve@mitre.org"}, {"url": "https://lists.gnu.org/archive/html/bug-wget/2024-06/msg00005.html", "tags": ["Mailing List", "Patch"], "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-436"}]}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-436"}]}], "descriptions": [{"lang": "en", "value": "url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo subcomponent is misinterpreted to be part of the host subcomponent."}, {"lang": "es", "value": "url.c en GNU Wget hasta 1.24.5 maneja mal los puntos y comas en el subcomponente de informaci\u00f3n de usuario de un URI y, por lo tanto, puede haber un comportamiento inseguro en el que los datos que se supon\u00eda que estaban en el subcomponente de informaci\u00f3n de usuario se malinterpretan como parte del subcomponente del host."}], "lastModified": "2024-10-28T21:35:09.643", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gnu:wget:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CFC92ECA-B3E9-413B-A576-D563F357A047", "versionEndIncluding": "1.24.5"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}