GNU Wget through 1.21.1 does not omit the Authorization header upon a redirect to a different origin, a related issue to CVE-2018-1000007.
2021-04-29T05:15:08.707
2024-11-21T06:06:25.020
Modified
CVSSv3.1: 6.1 (MEDIUM)
AV:N/AC:M/Au:N/C:P/I:P/A:N
8.6
4.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | gnu | wget | ≤ 1.21.1 | Yes |
| Operating System | broadcom | brocade_fabric_operating_system_firmware | - | Yes |
| Application | netapp | cloud_backup | - | Yes |
| Application | netapp | ontap_select_deploy_administration_utility | - | Yes |
| Operating System | netapp | a250_firmware | - | Yes |
| Hardware | netapp | a250 | - | No |
| Operating System | netapp | 500f_firmware | - | Yes |
| Hardware | netapp | 500f | - | No |