CVE-2026-58471

Published: July 10, 2026Last modified: July 14, 2026

Description

GNU Wget through 1.25.0, fixed in commit c2640fe, contains a heap buffer overflow vulnerability in the convert_fname() function within src/url.c that allows remote attackers to trigger memory corruption through a server-supplied filename requiring character set conversion. When the output buffer is too small during iconv E2BIG reallocation, the reallocation logic miscalculates the remaining space, leading to a heap buffer overflow that can be exploited via a maliciously crafted server response.

Severity score breakdown

ParameterValue
Base score7.1
Attack VectorNETWORK
Attack complexityLOW
Privileges requiredNONE
User interactionREQUIRED
ScopeUNCHANGED
ConfidentialityNONE
Integrity impactLOW
Availability impactHIGH
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H

Status

ProductReleasePackageStatus
Alpaquita Linux23 LTSwgetFixed (1.21.4-r2)
25 LTSwgetFixed (1.25.0-r2)
StreamwgetFixed (1.25.0-r2)

References

ON THIS PAGE