Every CVE whose affected-product data names Gnu Bash, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (18)
CVE-2014-7186 — CVSS 10.0 (critical): The redirection implementation in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service…
CVE-2014-7187 — CVSS 10.0 (critical): Off-by-one error in the read_token_word function in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of…
CVE-2014-6277 — CVSS 10.0 (critical): GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote…
CVE-2016-7543 — CVSS 8.4 (high): Bash before 4.4 allows local users to execute arbitrary commands with root privileges via crafted SHELLOPTS and PS4 environment variables.
CVE-2022-3715 — CVSS 7.8 (high): A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory…
CVE-2017-5932 — CVSS 7.8 (high): The path autocompletion feature in Bash 4.4 allows local users to gain privileges via a crafted filename starting with a " (double quote)…
CVE-2019-18276 — CVSS 7.8 (high): An issue was discovered in disable_priv_mode in shell.c in GNU Bash through 5.0 patch 11. By default, if Bash is run with its effective UID…
CVE-2019-9924 — CVSS 7.8 (high): rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASH_CMDS, thus allowing the user to execute any command with…
CVE-2016-0634 — CVSS 7.5 (high): The expansion of '\h' in the prompt string in bash 4.3 allows remote authenticated users to execute arbitrary code via shell metacharacters…
CVE-2012-6711 — CVSS 7.0 (high): A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LC_CTYPE…
CVE-2016-9401 — CVSS 5.5 (medium): popd in bash might allow local users to bypass the restricted shell and cause a use-after-free via a crafted address.
CVE-1999-0491 — CVSS 4.6 (medium): The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to…
CVE-1999-1383 — CVSS 4.6 (medium): (1) bash before 1.14.7, and (2) tcsh 6.05 allow local users to gain privileges via directory names that contain shell metacharacters (`…
CVE-2012-3410 — CVSS 4.6 (medium): Stack-based buffer overflow in lib/sh/eaccess.c in GNU Bash before 4.2 patch 33 might allow local users to bypass intended restricted shell…
CVE-2010-0002 — CVSS 2.1 (low): The /etc/profile.d/60alias.sh script in the Mandriva bash package for Bash 2.05b, 3.0, 3.2, 3.2.48, and 4.0 enables the…