GNU bash contains a flaw that is triggered when evaluating environment variables passed from another environment. After processing a function definition, bash continues to process trailing strings. Via certain applications, a local or remote attacker may inject shell commands, allowing local privilege escalation or remote command execution depending on the application vector. The Tenable Appliance has been determined to be affected via the DHCP client that is run when configured to use DHCP for network configuration information on any interface. Additionally, it has been confirmed that the simpleupload.html page is vulnerable through the web server. The vulnerable simpleupload.html page is available without authentication beginning with the 2.6.2 version.