Skip to main content
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.
Reconnecting to live updates…
EPSS 0.7%top 52%

Red Hat Security Advisory: wget security update

0
Medium
Published: 08/06/2024 (08/06/2024, 15:02:30 UTC)
Source: GCVE Database
Vendor/Project: Red Hat Product Security
Product: Red Hat

Description

A moderate severity vulnerability (CVE-2024-38428) has been identified in the wget utility provided by Red Hat. The issue involves misinterpretation of input that may lead to improper behavior of the wget tool. Red Hat has released security updates addressing this flaw for multiple Red Hat Enterprise Linux 8.6 variants. Users of affected versions are advised to apply the provided patches to remediate the vulnerability.

AI-Powered Analysis

Machine-generated threat intelligence

AILast updated: 07/19/2026, 03:57:28 UTC

Technical Analysis

The vulnerability CVE-2024-38428 affects the wget packages in Red Hat Enterprise Linux 8.6. It is caused by misinterpretation of input, which may lead to improper behavior of the wget utility used for HTTP, HTTPS, and FTP file retrieval. Red Hat Product Security has rated this issue as having a moderate security impact and has issued updated wget packages to fix the problem. The advisory references Red Hat errata RHSA-2024:4998 and provides updated package versions (wget-1.19.5-10.el8_6.2) for affected architectures and variants. No CVSS score is provided in the advisory.

Potential Impact

The vulnerability may cause wget to behave improperly due to input misinterpretation. While the exact impact details are not specified, improper behavior could affect the reliability or security of file retrieval operations using wget. There are no known exploits in the wild reported at this time.

Mitigation Recommendations

Red Hat has released updated wget packages (version 1.19.5-10.el8_6.2) for Red Hat Enterprise Linux 8.6 variants to address this vulnerability. Users should apply these official security updates as described in Red Hat advisory RHSA-2024:4998 and the referenced article https://access.redhat.com/articles/11258. Patch status is confirmed as an official fix available from Red Hat.

Pro Console: star threats, build custom feeds, automate alerts via Slack, email & webhooks.Upgrade to Pro

Technical Details

Gcve Source
db.gcve.eu
Csaf Category
csaf_security_advisory
Csaf Version
2.0
Publisher
Red Hat Product Security
Advisory Id
RHSA-2024:4998
Cve Count
1
Additional Cves
[]
Cvss Version
null

Threat ID: 6a5c477f2a4a8d5989eb6182

Added to database: 07/19/2026, 03:41:51 UTC

Last enriched: 07/19/2026, 03:57:28 UTC

Last updated: 07/19/2026, 10:38:53 UTC

Views: 11

Community Reviews

0 reviews

Crowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.

Sort by
Loading community insights…

Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.

Actions

PRO

Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.

Please log in to the Console to use AI analysis features.

Need more coverage?

Upgrade to Pro Console for AI refresh and higher limits.

For incident response and remediation, OffSeq services can help resolve threats faster.

Latest Threats

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses