VDB

GCVE-110-MAGEIA-2024-240

GCVE-110-MAGEIA-2024-240
Advisory Published
Vulnetix · Advisory published June 27, 2024
url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo subcomponent is misinterpreted to be part of the host subcomponent. (CVE-2024-38428)

Affected Products

VendorProductVersionsPlatforms
Mageiaphp0 (affected), 8.2.27-1.mga9 (unaffected)
Mageiawget0 (affected), 1.21.4-1.1.mga9 (unaffected), 0 (affected), 1.21.4-1.1.mga9 (unaffected)

Browse GCVE Records

72,148 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›