GNU Wget2 Metalink Path Traversal Vulnerability Allowing Arbitrary File Overwrite

Vulnerability

A path traversal vulnerability has been identified in GNU Wget2's handling of Metalink documents. The issue stems from inadequate validation of file paths in Metalink <file name> elements, allowing attackers to manipulate path values and write files to unintended locations. This vulnerability is remotely exploitable, requires no authentication, and could lead to data loss or unauthorized code execution by overwriting configuration files used by the user.

Impact

Exploitation of this vulnerability allows for arbitrary file writes, with the potential to overwrite critical files that could be used to execute code, such as programs or libraries. This could also lead to bypassing security mechanisms by manipulating files used for authentication or other protective measures.

Added: Jan 9, 2026, 8:18 AM

Updated: Jan 9, 2026, 8:18 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.7

remediation

0.0

relevance

1.9

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.7

remediation

0.0

relevance

1.9

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GNU Wget2 Metalink Path Traversal Vulnerability Allowing Arbitrary File Overwrite

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating