CVE-2014-7169 — Actively Exploited: Bourne-Again Shell (Bash) (GNU)
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute code. This CVE correctly remediates the vulnerability in CVE-2014-6271.
| CVE ID | CVE-2014-7169 |
|---|---|
| Vendor | GNU |
| Product | Bourne-Again Shell (Bash) |
| Vulnerability name | GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability |
| Date added | 2022-01-28 |
| Remediation due | 2022-07-28 |
| Known ransomware use | Unknown |
| Required action | Apply updates per vendor instructions. |
| Description | GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute code. This CVE correctly remediates the vulnerability in CVE-2014-6271. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →