Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

28 matches found

Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.24 views

RHEL 5 : bash (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bash: Specially crafted SHELLOPTS+PS4 variables allows command substitution CVE-2016-7543 - The expansion...

8.4CVSS7.8AI score0.03691EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2024/05/11 12:0 a.m.10 views

RHEL 5 : bash (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bash: Specially crafted SHELLOPTS+PS4 variables allows command substitution CVE-2016-7543 - bash: when...

7.6AI score0.50225EPSS
Exploits5References3
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2017-0005)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.2CVSS6AI score0.00041EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2019/03/26 12:0 a.m.75 views

Debian DLA-1726-1 : bash security update

Two issues have been fixed in bash, the GNU Bourne-Again Shell : CVE-2016-9401 The popd builtin segfaulted when called with negative out of range offsets. CVE-2019-9924 Sylvain Beucler discovered that it was possible to call commands that contained a slash when in restricted mode rbash by adding...

7.8CVSS6.5AI score0.00319EPSS
Exploits0References4
Cent OS
Cent OSadded 2017/08/24 1:36 a.m.115 views

bash security update

CentOS Errata and Security Advisory CESA-2017:1931 An update for bash is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

8.4CVSS6.8AI score0.03691EPSS
Exploits0References7
RedHat Linux
RedHat Linuxadded 2017/08/01 2:26 p.m.1 views

bash: popd controlled free

A denial of service flaw was found in the way bash handled popd commands. A poorly written shell script could cause bash to crash resulting in a local denial of service limited to a specific bash session...

6.2CVSS7.3AI score0.00041EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2017/05/18 12:0 a.m.62 views

Ubuntu 14.04 LTS / 16.04 LTS : Bash vulnerabilities (USN-3294-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3294-1 advisory. Bernd Dietzel discovered that Bash incorrectly expanded the hostname when displaying the prompt. If a remote attacker were able to modify a...

8.4CVSS7.3AI score0.03691EPSS
Exploits2References5
OSV
OSVadded 2017/05/17 5:6 p.m.0 views

USN-3294-1 bash vulnerabilities

Bernd Dietzel discovered that Bash incorrectly expanded the hostname when displaying the prompt. If a remote attacker were able to modify a hostname, this flaw could be exploited to execute arbitrary code. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 16.10. CVE-2016-0634...

8.4CVSS7AI score0.03691EPSS
Exploits2References5
Tenable Nessus
Tenable Nessusadded 2017/05/17 12:0 a.m.33 views

SUSE SLED12 / SLES12 Security Update : bash (SUSE-SU-2017:1317-1)

This update for bash fixes an issue that could lead to syntax errors when parsing scripts that use expr1 inside loops. Additionally, the popd build-in now ensures that the normalized stack offset is within bounds before trying to free that stack entry. This fixes a segmentation fault. Note that...

6.2CVSS6.4AI score0.00041EPSS
Exploits0References5
Oracle linux
Oracle linuxadded 2017/03/27 12:0 a.m.51 views

bash security and bug fix update

4.1.2-48 - Fix signal handling in read builtin Resolves: 1421926 4.1.2-47 - CVE-2016-9401 - Fix crash when '-' is passed as second sign to popd Resolves: 1396383 4.1.2-46 - CVE-2016-7543 - Fix for arbitrary code execution via SHELLOPTS+PS4 variables Resolves: 1379630 4.1.2-45 - CVE-2016-0634 - Fi...

8.4CVSS2.5AI score0.03691EPSS
Exploits0
RedHat Linux
RedHat Linuxadded 2017/03/21 8:42 a.m.1 views

bash: popd controlled free

A denial of service flaw was found in the way bash handled popd commands. A poorly written shell script could cause bash to crash resulting in a local denial of service limited to a specific bash session...

6.2CVSS7.3AI score0.00041EPSS
Exploits0References4
OSV
OSVadded 2017/01/23 9:59 p.m.24 views

CVE-2016-9401

popd in bash might allow local users to bypass the restricted shell and cause a use-after-free via a crafted address...

5.5CVSS6.5AI score
Exploits0References7
OSV
OSVadded 2017/01/23 9:59 p.m.0 views

ALPINE-CVE-2016-9401

popd in bash might allow local users to bypass the restricted shell and cause a use-after-free via a crafted address...

5.5CVSS6.6AI score0.00041EPSS
Exploits0References1
NVD
NVDadded 2017/01/23 9:59 p.m.17 views

CVE-2016-9401

popd in bash might allow local users to bypass the restricted shell and cause a use-after-free via a crafted address...

6.2CVSS5.2AI score0.00041EPSS
Exploits0References7
OSV
OSVadded 2017/01/23 9:59 p.m.1 views

DEBIAN-CVE-2016-9401

popd in bash might allow local users to bypass the restricted shell and cause a use-after-free via a crafted address...

5.5CVSS6.3AI score0.00041EPSS
Exploits0References1
Prion
Prionadded 2017/01/23 9:59 p.m.25 views

Authentication flaw

popd in bash might allow local users to bypass the restricted shell and cause a use-after-free via a crafted address...

2.1CVSS6.6AI score0.00041EPSS
Exploits0References7Affected Software8
CVE
CVEadded 2017/01/23 9:0 p.m.243 views

CVE-2016-9401

CVE-2016-9401 relates to the Bash shell. The vulnerability is in the popd builtin, which may segfault/use‑after‑free a process when called with crafted/negative offsets, potentially enabling local disruption or bypassing restricted shells. The issue is fixed in multiple downstream advisories; rem...

6.2CVSS5.3AI score0.00041EPSS
Exploits0References7Affected Software1
Cvelist
Cvelistadded 2017/01/23 9:0 p.m.23 views

CVE-2016-9401

popd in bash might allow local users to bypass the restricted shell and cause a use-after-free via a crafted address...

5.5AI score0.00041EPSS
Exploits0References7
Debian CVE
Debian CVEadded 2017/01/23 9:0 p.m.34 views

CVE-2016-9401

popd in bash might allow local users to bypass the restricted shell and cause a use-after-free via a crafted address...

6.2CVSS6.3AI score0.00041EPSS
Exploits0
OSV
OSVadded 2017/01/23 12:0 a.m.0 views

UBUNTU-CVE-2016-9401

popd in bash might allow local users to bypass the restricted shell and cause a use-after-free via a crafted address...

6.2CVSS6.7AI score0.00041EPSS
Exploits0References4
Rows per page
Query Builder