Lucene search
K

6 matches found

CVE
CVE
added 2014/09/24 6:0 p.m.2902 views

CVE-2014-6271

CVE-2014-6271 (Shellshock) affects GNU Bash up to 4.3, enabling remote code execution by processing trailing strings after function definitions in environment variables. Exploitation vectors include OpenSSH ForceCommand, mod_cgi/mod_cgid in Apache, DHCP client scripts, and other environment-passi...

10CVSS9.9AI score0.99999EPSS
In wild
CVE
CVE
added 2014/09/25 1:0 a.m.1330 views

CVE-2014-7169

CVE-2014-7169 affects GNU Bash up to 4.3, where parsing of function definitions in environment variables can be exploited to run commands or impact other attributes across privilege boundaries (notably via ForceCommand in OpenSSH sshd and via mod_cgi/mod_cgid in Apache, as well as DHCP client scr...

10CVSS8.4AI score0.9994EPSS
In wild
CVE
CVE
added 2014/09/30 10:0 a.m.441 views

CVE-2014-6278

CVE-2014-6278 affects GNU Bash up to 4.3 bash43-026, where parsing of function definitions inside environment variable values is flawed, enabling remote arbitrary command execution across privilege boundaries. Documented vectors include ForceCommand in OpenSSH sshd, mod_cgi/mod_cgid in Apache, an...

10CVSS9.9AI score0.99621EPSS
In wild
CVE
CVE
added 2014/09/27 10:0 p.m.384 views

CVE-2014-6277

CVE-2014-6277 affects GNU Bash up to version 4.3 with the patch level bash43-026. It abuses how Bash parses function definitions inside environment variables, enabling remote code execution or denial of service via crafted environments that cross privilege boundaries (e.g., across sshd ForceComma...

10CVSS8.7AI score0.64326EPSS
In wild
CVE
CVE
added 2014/09/28 7:0 p.m.228 views

CVE-2014-7186

Technical details about CVE-2014-7186 are not provided in the connected documents. Monitor for updates.

10CVSS7.5AI score0.64336EPSS
Web
CVE
CVE
added 2014/09/28 7:0 p.m.220 views

CVE-2014-7187

Technical details for CVE-2014-7187 are not publicly available in the provided documents; monitor for updates.

10CVSS7.6AI score0.58462EPSS
Web