Wind River Support Network

HomeDefectsLIN1022-11863
Fixed

LIN1022-11863 : Security Advisory - wget - CVE-2024-10524

Created: Nov 11, 2024    Updated: Jun 10, 2025
Resolved Date: May 28, 2025
Found In Version: 10.22.33.1
Fix Version: 10.22.33.21
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Userspace

Description

Applications that use Wget to access a remote resource using shorthand URLs and pass arbitrary user credentials in the URL are vulnerable. In these cases attackers can enter crafted credentials which will cause Wget to access an arbitrary host.

https://nvd.nist.gov/vuln/detail/CVE-2024-10524

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube