Updated: 2023-03-10 12:28:07.061403
Description:
GNU Wget through 1.21.1 does not omit the Authorization header upon a redirect to a different origin, a related issue to CVE-2018-1000007.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | MEDIUM | 5.8 |
| CVSS Version 3.x | MEDIUM | 6.1 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated |
|---|---|---|---|---|---|---|---|
| CentOS 6 ELS | wget | 1.12 | 6.1 | MEDIUM | Ignored | 2021-11-02 14:03:19 | |
| CentOS 8.4 ELS | wget | 1.19.5 | 6.1 | MEDIUM | Ignored | 2022-02-04 02:37:32 | |
| CentOS 8.5 ELS | wget | 1.19.5 | 6.1 | MEDIUM | Ignored | 2022-02-10 08:36:20 | |
| CloudLinux 6 ELS | wget | 1.12 | 6.1 | MEDIUM | Ignored | 2021-11-02 14:03:19 | |
| Oracle Linux 6 ELS | wget | 1.12 | 6.1 | MEDIUM | Ignored | 2021-11-02 14:03:19 | |
| Ubuntu 16.04 ELS | wget | 1.17.1-1 | 6.1 | MEDIUM | Ignored | 2021-11-02 14:03:19 | |
| Ubuntu 18.04 ELS | wget | 1.19.4-1 | 6.1 | MEDIUM | Needs Triage | 2023-03-02 13:02:04 |