Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnu bash vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2019-1593
A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local malicious user to escalate their privilege level by executing commands authorized to other user roles. The attacker must authenticate with valid user credentials. The vul...
Cisco Nx-os
7.1
CVSSv2
CVE-2014-3370
Cisco TelePresence Video Communication Server (VCS) and Expressway Software before X8.1.1 allow remote malicious users to cause a denial of service (device reload) via crafted SIP packets, aka Bug IDs CSCum60442 and CSCum60447.
Cisco Telepresence Video Communication Server Software
Cisco Expressway Software
7.1
CVSSv2
CVE-2014-3369
The SIP IX implementation in Cisco TelePresence Video Communication Server (VCS) and Expressway Software before X8.1.1 allows remote malicious users to cause a denial of service (device reload) via crafted SDP packets, aka Bug ID CSCuo42252.
Cisco Expressway Software
Cisco Telepresence Video Communication Server Software
4.6
CVSSv2
CVE-2012-6711
A heap-based buffer overflow exists in GNU Bash prior to 4.3 when wide characters, not supported by the current locale set in the LC_CTYPE environment variable, are printed through the echo built-in function. A local attacker, who can provide data to print through the "echo ...
Gnu Bash
Redhat Enterprise Linux 7.0
4.6
CVSSv2
CVE-2017-5932
The path autocompletion feature in Bash 4.4 allows local users to gain privileges via a crafted filename starting with a " (double quote) character and a command substitution metacharacter.
Gnu Bash 4.4
4.6
CVSSv2
CVE-2012-3410
Stack-based buffer overflow in lib/sh/eaccess.c in GNU Bash prior to 4.2 patch 33 might allow local users to bypass intended restricted shell access via a long filename in /dev/fd, which is not properly handled when expanding the /dev/fd prefix.
Gnu Bash 4.2
4.6
CVSSv2
CVE-1999-0491
The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute.
Gnu Bash 1.14.3
Gnu Bash 2.05
Gnu Bash 1.14.1
Gnu Bash 2.01
Gnu Bash 2.0
Gnu Bash 2.01.1
Gnu Bash 1.14.7
Gnu Bash 1.14.6
Gnu Bash 1.14.2
Gnu Bash 1.14.4
Gnu Bash 2.02.1
Gnu Bash 1.14.5
Gnu Bash 1.14.0
Gnu Bash 2.02
Gnu Bash
Gnu Bash 2.03
1 EDB exploit
4.6
CVSSv2
CVE-1999-1383
(1) bash prior to 1.14.7, and (2) tcsh 6.05 allow local users to gain privileges via directory names that contain shell metacharacters (` back-tick), which can cause the commands enclosed in the directory name to be executed when the shell expands filenames using the \w option in...
Gnu Bash 1.14.1
Gnu Bash 1.14.2
Tcsh Tcsh 6.05
Gnu Bash 1.14.0
Gnu Bash 1.14.5
Gnu Bash
Gnu Bash 1.14.3
Gnu Bash 1.14.4
2.1
CVSSv2
CVE-2010-0002
The /etc/profile.d/60alias.sh script in the Mandriva bash package for Bash 2.05b, 3.0, 3.2, 3.2.48, and 4.0 enables the --show-control-chars option in LS_OPTIONS, which allows local users to send escape sequences to terminal emulators, or hide the existence of a file, via a craft...
Gnu Bash 3.2
Gnu Bash 3.2.48
Gnu Bash 4.0
Gnu Bash 2.05
Gnu Bash 3.0
1 EDB exploit
NA
CVE-2014-627729
CHARQITO_NET El charqito net GNU Bash o simplemente Bash (Bourne-again shell) es una interfaz de usuario de línea de comandos popular, específicamente un shell de Unix; así como un lenguaje de scripting. Bash fue originalmente escrito por Brian Fox para el si...
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »