0.0004 Low
EPSS
Percentile
9.0%
bash is vulnerable to a heap buffer overflow. The vulnerability exists in valid_parameter_transform function of subst.c which allows an attacker to crash the system through potentially exploit heap corruption via a malicious HTML page.
valid_parameter_transform
subst.c
http:
bugzilla.redhat.com/show_bug.cgi?id=2126720
bugzilla.suse.com/show_bug.cgi?id=CVE-2022-3715
lists.gnu.org/archive/html/bug-bash/2022-08/msg00147.html