CVE-2021-31879

CVE-2021-31879

EPSS 1.1%

GNU Wget through 1.21.1 does not omit the Authorization header upon a redirect to a different origin, a related issue to CVE-2018-1000007.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://mail.gnu.org/archive/html/bug-wget/2021-02/msg00002.html https://security.netapp.com/advisory/ntap-20210618-0002/