CNNVD-202512-4907 Information

CNNVD ID

CNNVD-202512-4907

Related CVE

CVE-2025-69194

• CNNVD Published: 2025-12-29

Description (Chinese)

GNU Wget2是美国GNU社区的一个网络下载工具。 GNU Wget2存在安全漏洞，该漏洞源于未能正确验证Metalink文件名元素中的文件路径，可能导致文件写入到意外位置。

Description (English)

GNU Wget2 is a web download tool for the GNU community in the United States. There is a security loophole in GNU Wget2, which results from the failure to correctly verify the file path in the Metalink file name element, which could lead to the document being written to an unexpected location.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

GNU

Published

2025-12-29

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-69194 https://bugzilla.redhat.com/show_bug.cgi?id=2425773 https://access.redhat.com/security/cve/cve-2025-69194