THREATOPS
THREAT OPSCVEs › CVE-2014-7169

CVE-2014-7169 — GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability

CISA KEVExploited: confirmedGNU

GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute code. This CVE correctly remediates the vulnerability in CVE-2014-6271.

Vulnerability details