Vulnerabilities (CVE)

Vendor filter

Gnu Subscribe

Product filter

Bash Subscribe

Filter

16 total CVE
CVE Vendors Products Updated CVSS
CVE-2014-6271 1 Gnu 1 Bash 2019-10-09 10.0
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the...
CVE-2012-6711 2 Gnu, Redhat 2 Bash, Enterprise Linux 2019-06-20 4.6
A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LC_CTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data...
CVE-2019-9924 2 Gnu, Debian 2 Bash, Debian Linux 2019-04-11 7.2
rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASH_CMDS, thus allowing the user to execute any command with the permissions of the shell.
CVE-2016-9401 1 Gnu 1 Bash 2019-03-25 2.1
popd in bash might allow local users to bypass the restricted shell and cause a use-after-free via a crafted address.
CVE-2014-7169 1 Gnu 1 Bash 2018-11-30 10.0
GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted...
CVE-2014-7187 1 Gnu 1 Bash 2018-10-09 10.0
Off-by-one error in the read_token_word function in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via...
CVE-2014-7186 1 Gnu 1 Bash 2018-10-09 10.0
The redirection implementation in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via crafted use of here...
CVE-2014-6278 1 Gnu 1 Bash 2018-08-09 10.0
GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote attackers to execute arbitrary commands via a crafted environment, as demonstrated by vectors involving the...
CVE-2014-6277 1 Gnu 1 Bash 2018-08-09 10.0
GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code or cause a denial of service (uninitialized memory access, and...
CVE-2016-7543 2 Fedoraproject, Gnu 2 Bash, Fedora 2018-01-05 7.2
Bash before 4.4 allows local users to execute arbitrary commands with root privileges via crafted SHELLOPTS and PS4 environment variables.
CVE-2016-0634 1 Gnu 1 Bash 2018-01-05 6.0
The expansion of '\h' in the prompt string in bash 4.3 allows remote authenticated users to execute arbitrary code via shell metacharacters placed in 'hostname' of a machine.
CVE-2012-3410 1 Gnu 1 Bash 2017-08-29 4.6
Stack-based buffer overflow in lib/sh/eaccess.c in GNU Bash before 4.2 patch 33 might allow local users to bypass intended restricted shell access via a long filename in /dev/fd, which is not properly handled when expanding the /dev/fd prefix.
CVE-2017-5932 1 Gnu 1 Bash 2017-03-31 4.6
The path autocompletion feature in Bash 4.4 allows local users to gain privileges via a crafted filename starting with a " (double quote) character and a command substitution metacharacter.
CVE-1999-1383 2 Gnu, Tcsh 2 Bash, Tcsh 2016-10-18 4.6
(1) bash before 1.14.7, and (2) tcsh 6.05 allow local users to gain privileges via directory names that contain shell metacharacters (` back-tick), which can cause the commands enclosed in the directory name to be executed when the shell expands...
CVE-1999-0491 1 Gnu 1 Bash 2014-12-31 4.6
The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute.
CVE-2010-0002 1 Gnu 1 Bash 2011-08-08 2.1
The /etc/profile.d/60alias.sh script in the Mandriva bash package for Bash 2.05b, 3.0, 3.2, 3.2.48, and 4.0 enables the --show-control-chars option in LS_OPTIONS, which allows local users to send escape sequences to terminal emulators, or hide...