CVE-2014-7169: GNU Bourne-Again Shell (Bash) Arbitrary Code Execution
GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability. GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute code. This CVE correctly remediates the vulnerability in CVE-2014-6271.
- CISA KEV-listed (remediation due 2022-07-28)
- EPSS 89.1% (99.5% percentile)