CVE-2014-6271βGNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability
PUBLISHEDvulnerability record
2022-01-28 Β· last modified June 21, 2025
Metadata
Vulnerability Name
GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability
Description
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute code.
Known To Be Used in Ransomware Campaigns?
Action
Apply updates per vendor instructions.