Описание
Bash before 4.4 allows local users to execute arbitrary commands with root privileges via crafted SHELLOPTS and PS4 environment variables.
Ссылки
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- PatchVendor Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 4.3 (включая)
cpe:2.3:a:gnu:bash:*:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:24:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:25:*:*:*:*:*:*:*
EPSS
Процентиль: 29%
0.00101
Низкий
8.4 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 8.4
ubuntu
почти 9 лет назад
Bash before 4.4 allows local users to execute arbitrary commands with root privileges via crafted SHELLOPTS and PS4 environment variables.
CVSS3: 7
redhat
около 9 лет назад
Bash before 4.4 allows local users to execute arbitrary commands with root privileges via crafted SHELLOPTS and PS4 environment variables.
CVSS3: 8.4
debian
почти 9 лет назад
Bash before 4.4 allows local users to execute arbitrary commands with ...
CVSS3: 8.4
github
больше 3 лет назад
Bash before 4.4 allows local users to execute arbitrary commands with root privileges via crafted SHELLOPTS and PS4 environment variables.
EPSS
Процентиль: 29%
0.00101
Низкий
8.4 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-20