CVE-2025-69195

Name of the Vulnerable Software and Affected Versions GNU Wget2 (affected versions not specified)

Description A stack-based buffer overflow exists in the filename sanitization logic when processing attacker-controlled URL paths, particularly when filename restriction options are active. A remote attacker can exploit this by providing a specially crafted URL. Upon user interaction with the software, this can lead to memory corruption, potentially causing the application to crash and allowing for further malicious activities. The issue enables arbitrary file writes and, when combined with a related issue, heightens risks like denial-of-service or memory corruption.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.