Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2014-6277

CWE-78 — OS Command Injection CWE-119 — Buffer Overflow19 documents12 sources

Severity

10.0CRITICAL

EPSS

86.5%

top 0.58%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

GNU Bash

Timeline

PublishedSep 27

Latest updateAug 10

Description

GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code or cause a denial of service (uninitialized memory access, and untrusted-pointer read and write operations) via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and oth…

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages3 packages

▶Debianbash< 4.3-9.2+3

▶Ubuntubash< 4.3-7ubuntu1.5

▶NVDgnu/bash25 versions+24

Patches

Patch: lcamtuf.blogspot.com ↗Patch: lcamtuf.blogspot.com ↗

🔴Vulnerability Details

OSV

php-dompdf vulnerabilities↗2023-08-10

▶

GHSA

GHSA-55cc-h8m2-x3mp: GNU Bash through 4↗2022-05-14

▶

OSV

bash vulnerabilities↗2014-10-09

▶

OSV

CVE-2014-6277: GNU Bash through 4↗2014-09-27

▶

CVEList

CVE-2014-6277: GNU Bash through 4↗2014-09-27

▶

💥Exploits & PoCs

Exploit-DB

Binary File Descriptor Library (libbfd) - Out-of-Bounds Crash↗2014-10-27

▶

Exploit-DB

GNU bash 4.3.11 - Environment Variable dhclient↗2014-10-02

▶

Exploit-DB

dhclient 4.1 - Bash Environment Variable Command Injection (Shellshock)↗2014-09-29

▶

📋Vendor Advisories

Ubuntu

Bash vulnerabilities↗2014-10-09

▶

Red Hat

bash: incorrect parsing of function definitions with nested command substitutions↗2014-09-29

▶

Red Hat

bash: uninitialized here document closing delimiter pointer use↗2014-09-27

▶

Cisco

GNU Bash Environment Variable Command Injection Vulnerability↗2014-09-26

▶

Debian

CVE-2014-6277: bash - GNU Bash through 4.3 bash43-026 does not properly parse function definitions in ...↗2014

▶

💬Community

Bugzilla

CVE-2014-6278 bash: incorrect parsing of function definitions with nested command substitutions↗2014-09-29

▶

Bugzilla

CVE-2014-6277 bash: uninitialized here document closing delimiter pointer use↗2014-09-28

▶