CVE-2014-7169
GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability
CVSS
—
Sin CVSS
EPSS
99.9%
p100
KEV
SÍ
28 ene 2022
Exploit Today
80
0-100
Publicado: — · Última mod.: —
99.9%EPSS · 30 días99.9%
2026-06-302026-07-16
Producto
GNU / Bourne-Again Shell (Bash)
Vulnerabilidad
GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability
Añadido a KEV
28 ene 2022
Remediar antes de
28 jul 2022
Uso conocido en ransomware
No
Descripción resumida
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute code. This CVE correctly remediates the vulnerability in CVE-2014-6271.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2014-7169
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2014-6271—100.0%
KEV—80GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability—