Exploit for OS Command Injection in Gnu Bash

CVE-201...

Exploit for OS Command Injection in Gnu Bash

...

UBUNTU-CVE-2026-25063

gradle-completion provides Bash and Zsh completion support for Gradle. A command injection vulnerability was found in gradle-completion up to and including 9.3.0 that allows arbitrary code execution when a user triggers Bash tab completion in a project containing a malicious Gradle build file. Th...

MiracleLinux 8 : bash-4.4.19-14.el8 (AXSA:2021-1784:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1784:01 advisory. bash: when effective UID is not equal to its real UID the saved UID is not dropped CVE-2019-18276 Tenable has extracted the preceding description block...

MiracleLinux 9 : bash-5.1.8-6.el9 (AXSA:2023-4862:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4862:01 advisory. bash: a heap-buffer-overflow in validparametertransform CVE-2022-3715 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 4 : bash-4.1.2-15.AXS4.1 (AXSA:2014-549:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2014-549:01 advisory. Description : The GNU Bourne Again shell Bash is a shell or command language interpreter that is compatible with the Bourne shell sh. Bash incorporates useful...

MiracleLinux 7 : bash-4.2.46-34.el7 (AXSA:2020-4537:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-4537:01 advisory. bash: BASHCMD is writable in restricted bash shells CVE-2019-9924 Tenable has extracted the preceding description block directly from the MiracleLinux securi...

MiracleLinux 4 : bash-4.1.2-48.AXS4 (AXSA:2017-1370:02)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2017-1370:02 advisory. The GNU Bourne Again shell Bash is a shell or command language interpreter that is compatible with the Bourne shell sh. Bash incorporates useful...

MiracleLinux 3 : bash-3.2-32.AXS3 (AXSA:2011-274:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2011-274:01 advisory. The GNU Bourne Again shell Bash is a shell or command language interpreter that is compatible with the Bourne shell sh. Bash incorporates useful features from...

CVE-2010-0002

The /etc/profile.d/60alias.sh script in the Mandriva bash package for Bash 2.05b, 3.0, 3.2, 3.2.48, and 4.0 enables the --show-control-chars option in LSOPTIONS, which allows local users to send escape sequences to terminal emulators, or hide the existence of a file, via a crafted filename...

CVE-1999-0234

Bash treats any character with a value of 255 as a command separator...

CVE-1999-0491

The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute...

Exploit for OS Command Injection in Gnu Bash

Exploiting Shellshock CVE-2014-6271: A Complete, Modern Demo...

EUVD-2019-10287

Malware in sbrugna...

EUVD-1999-1029

Malware in sbrugna...

EUVD-2016-10211

Malware in sbrugna...

EUVD-2017-15954

Malware in sbrugna...

EUVD-2013-6678

Malware in sbrugna...

EUVD-2016-8396

Malware in sbrugna...

CISA Adds Five Known Exploited Vulnerabilities to Catalog

CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2014-6278link is external GNU Bash OS Command Injection Vulnerability CVE-2015-7755link is external Juniper ScreenOS Improper Authentication Vulnerability...