CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-15006

Malware in sbrugna...

7.8CVSS7.7AI score0.00229EPSS

Exploits2References7

Amazon•added 2020/10/27 12:0 a.m.•28 views

Medium: bash

Issue Overview: rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASHCMDS, thus allowing the user to execute any command with the permissions of the shell. CVE-2019-9924 Affected Packages: bash Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository...

7.8CVSS7.8AI score0.00319EPSS

Exploits0

Tenable Nessus•added 2019/05/29 12:0 a.m.•24 views

EulerOS 2.0 SP3 : bash (EulerOS-SA-2019-1564)

According to the version of the bash package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASHCMDS, thus allowing the user to execute any command with the...

7.8CVSS7.2AI score0.00319EPSS

Exploits0References2

Prion•added 2017/03/27 3:59 p.m.•19 views

Authentication flaw

The path autocompletion feature in Bash 4.4 allows local users to gain privileges via a crafted filename starting with a " double quote character and a command substitution metacharacter...

4.6CVSS7.6AI score0.00229EPSS

Exploits2References4Affected Software1

OSV•added 2017/03/27 3:59 p.m.•1 views

DEBIAN-CVE-2017-5932

The path autocompletion feature in Bash 4.4 allows local users to gain privileges via a crafted filename starting with a " double quote character and a command substitution metacharacter...

7.8CVSS8.2AI score0.00229EPSS

Exploits2References1

OSV•added 2017/03/27 3:59 p.m.•20 views

CVE-2017-5932

The path autocompletion feature in Bash 4.4 allows local users to gain privileges via a crafted filename starting with a " double quote character and a command substitution metacharacter...

7.8CVSS6.7AI score

Exploits0References4

CVE•added 2017/03/27 3:0 p.m.•103 views

CVE-2017-5932

CVE-2017-5932 is a Bash local privilege escalation exploiting the path autocompletion feature. A crafted filename that begins with a double quote and includes a command substitution metacharacter can allow a local user to execute arbitrary code with elevated privileges. The vulnerability affects ...

7.8CVSS6.3AI score0.00229EPSS

Exploits2References4Affected Software1

UbuntuCve•added 2017/03/27 12:0 a.m.•26 views

CVE-2017-5932

The path autocompletion feature in Bash 4.4 allows local users to gain privileges via a crafted filename starting with a " double quote character and a command substitution metacharacter...

7.8CVSS7.1AI score0.00229EPSS

Exploits2References3

RedhatCVE•added 2017/02/09 9:48 a.m.•39 views

CVE-2017-5932

The path autocompletion feature in Bash 4.4 allows local users to gain privileges via a crafted filename starting with a " double quote character and a command substitution metacharacter...

7.8CVSS7.6AI score0.00229EPSS

Exploits2References2