CVE-2014-6278: GNU Bash OS Command Injection Vulnerability. GNU Bash
GNU Bash OS Command Injection Vulnerability. GNU Bash contains an OS command injection vulnerability which allows remote attackers to execute arbitrary commands via a crafted environment.
- CISA KEV-listed (remediation due 2025-10-23)
- EPSS 91.7% (99.7% percentile)