Skip to content

Security Vulnerability: CVE-2024-38428 in alpine/helm:latest - Helm Dependency Update Required. #20184

New issue
New issue
Closed
#20253
Closed
Security Vulnerability: CVE-2024-38428 in alpine/helm:latest - Helm Dependency Update Required.#20184
#20253
Labels
component:docsIssues related to documentation changes and improvementsenhancementNew feature or request
@aashiinmayo

Description

@aashiinmayo
aashiinmayo
opened on Oct 1, 2024

Summary

url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo subcomponent is misinterpreted to be part of the host subcomponent.

CVE Details

Vulnerability Score(v3): 9.1
CVE: 2024-38428
Severity: Critical
Documentation: CVE-2024-24790

Metadata

Metadata

Assignees

No one assigned

    Labels

    component:docsIssues related to documentation changes and improvementsenhancementNew feature or request

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions