Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/128309?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/128309?format=api", "vulnerability_id": "VCID-fdzr-4k2w-8uer", "summary": "GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote attackers to execute arbitrary commands via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-6271, CVE-2014-7169, and CVE-2014-6277.", "aliases": [ { "alias": "CVE-2014-6278" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/25025?format=api", "purl": "pkg:deb/debian/bash@4.3-9.2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@4.3-9.2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1082014?format=api", "purl": "pkg:deb/debian/bash@4.3-11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2ant-qsbm-37d9" }, { "vulnerability": "VCID-6sdv-wm7w-kbd5" }, { "vulnerability": "VCID-6u87-8gdp-kff5" }, { "vulnerability": "VCID-9rdp-azhv-63fd" }, { "vulnerability": "VCID-jkzr-5ga8-1kh1" }, { "vulnerability": "VCID-pddx-ctd3-6bbd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@4.3-11" }, { "url": "http://public2.vulnerablecode.io/api/packages/25013?format=api", "purl": "pkg:deb/debian/bash@5.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ccw7-5c23-bfcp" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@5.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/25010?format=api", "purl": "pkg:deb/debian/bash@5.2.15-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@5.2.15-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/25015?format=api", "purl": "pkg:deb/debian/bash@5.2.37-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@5.2.37-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/25014?format=api", "purl": "pkg:deb/debian/bash@5.3-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@5.3-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/3451?format=api", "purl": "pkg:ebuild/app-shells/bash@4.2_p52", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/app-shells/bash@4.2_p52" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1072619?format=api", "purl": "pkg:deb/debian/bash@2.01.1-4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2ant-qsbm-37d9" }, { "vulnerability": "VCID-3n27-ddbb-2uc4" }, { "vulnerability": "VCID-3nzd-713w-qygu" }, { "vulnerability": "VCID-6sdv-wm7w-kbd5" }, { "vulnerability": "VCID-6u87-8gdp-kff5" }, { "vulnerability": "VCID-7rp9-3b3v-83hq" }, { "vulnerability": "VCID-9rdp-azhv-63fd" }, { "vulnerability": "VCID-c5br-pkm3-v7a2" }, { "vulnerability": "VCID-d5ak-9k7x-8yew" }, { "vulnerability": "VCID-fdzr-4k2w-8uer" }, { "vulnerability": "VCID-hbrj-cf36-wkh7" }, { "vulnerability": "VCID-jkzr-5ga8-1kh1" }, { "vulnerability": "VCID-p9zw-cggw-tkff" }, { "vulnerability": "VCID-pddx-ctd3-6bbd" }, { "vulnerability": "VCID-pmds-1qrb-87br" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@2.01.1-4" }, { "url": "http://public2.vulnerablecode.io/api/packages/1072620?format=api", "purl": "pkg:deb/debian/bash@2.01.1-4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2ant-qsbm-37d9" }, { "vulnerability": "VCID-3n27-ddbb-2uc4" }, { "vulnerability": "VCID-3nzd-713w-qygu" }, { "vulnerability": "VCID-6sdv-wm7w-kbd5" }, { "vulnerability": "VCID-6u87-8gdp-kff5" }, { "vulnerability": "VCID-7rp9-3b3v-83hq" }, { "vulnerability": "VCID-9rdp-azhv-63fd" }, { "vulnerability": "VCID-c5br-pkm3-v7a2" }, { "vulnerability": "VCID-d5ak-9k7x-8yew" }, { "vulnerability": "VCID-fdzr-4k2w-8uer" }, { "vulnerability": "VCID-hbrj-cf36-wkh7" }, { "vulnerability": "VCID-jkzr-5ga8-1kh1" }, { "vulnerability": "VCID-p9zw-cggw-tkff" }, { "vulnerability": "VCID-pddx-ctd3-6bbd" }, { "vulnerability": "VCID-pmds-1qrb-87br" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@2.01.1-4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/1072621?format=api", "purl": "pkg:deb/debian/bash@2.03-6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2ant-qsbm-37d9" }, { "vulnerability": "VCID-3n27-ddbb-2uc4" }, { "vulnerability": "VCID-3nzd-713w-qygu" }, { "vulnerability": "VCID-6sdv-wm7w-kbd5" }, { "vulnerability": "VCID-6u87-8gdp-kff5" }, { "vulnerability": "VCID-7rp9-3b3v-83hq" }, { "vulnerability": "VCID-9rdp-azhv-63fd" }, { "vulnerability": "VCID-c5br-pkm3-v7a2" }, { "vulnerability": "VCID-d5ak-9k7x-8yew" }, { "vulnerability": "VCID-fdzr-4k2w-8uer" }, { "vulnerability": "VCID-hbrj-cf36-wkh7" }, { "vulnerability": "VCID-jkzr-5ga8-1kh1" }, { "vulnerability": "VCID-p9zw-cggw-tkff" }, { "vulnerability": "VCID-pddx-ctd3-6bbd" }, { "vulnerability": "VCID-pmds-1qrb-87br" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@2.03-6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1072622?format=api", "purl": "pkg:deb/debian/bash@2.05a-11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2ant-qsbm-37d9" }, { "vulnerability": "VCID-3n27-ddbb-2uc4" }, { "vulnerability": "VCID-3nzd-713w-qygu" }, { "vulnerability": "VCID-6sdv-wm7w-kbd5" }, { "vulnerability": "VCID-6u87-8gdp-kff5" }, { "vulnerability": "VCID-7rp9-3b3v-83hq" }, { "vulnerability": "VCID-9rdp-azhv-63fd" }, { "vulnerability": "VCID-c5br-pkm3-v7a2" }, { "vulnerability": "VCID-d5ak-9k7x-8yew" }, { "vulnerability": "VCID-fdzr-4k2w-8uer" }, { "vulnerability": "VCID-hbrj-cf36-wkh7" }, { "vulnerability": "VCID-jkzr-5ga8-1kh1" }, { "vulnerability": "VCID-p9zw-cggw-tkff" }, { "vulnerability": "VCID-pddx-ctd3-6bbd" }, { "vulnerability": "VCID-pmds-1qrb-87br" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@2.05a-11" }, { "url": "http://public2.vulnerablecode.io/api/packages/1072623?format=api", "purl": "pkg:deb/debian/bash@2.05b-2-26", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2ant-qsbm-37d9" }, { "vulnerability": "VCID-3n27-ddbb-2uc4" }, { "vulnerability": "VCID-3nzd-713w-qygu" }, { "vulnerability": "VCID-6sdv-wm7w-kbd5" }, { "vulnerability": "VCID-6u87-8gdp-kff5" }, { "vulnerability": "VCID-7rp9-3b3v-83hq" }, { "vulnerability": "VCID-9rdp-azhv-63fd" }, { "vulnerability": "VCID-c5br-pkm3-v7a2" }, { "vulnerability": "VCID-d5ak-9k7x-8yew" }, { "vulnerability": "VCID-fdzr-4k2w-8uer" }, { "vulnerability": "VCID-hbrj-cf36-wkh7" }, { "vulnerability": "VCID-jkzr-5ga8-1kh1" }, { "vulnerability": "VCID-p9zw-cggw-tkff" }, { "vulnerability": "VCID-pddx-ctd3-6bbd" }, { "vulnerability": "VCID-pmds-1qrb-87br" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@2.05b-2-26" }, { "url": "http://public2.vulnerablecode.io/api/packages/1072624?format=api", "purl": "pkg:deb/debian/bash@3.1dfsg-8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2ant-qsbm-37d9" }, { "vulnerability": "VCID-3n27-ddbb-2uc4" }, { "vulnerability": "VCID-3nzd-713w-qygu" }, { "vulnerability": "VCID-6sdv-wm7w-kbd5" }, { "vulnerability": "VCID-6u87-8gdp-kff5" }, { "vulnerability": "VCID-7rp9-3b3v-83hq" }, { "vulnerability": "VCID-9rdp-azhv-63fd" }, { "vulnerability": "VCID-c5br-pkm3-v7a2" }, { "vulnerability": "VCID-d5ak-9k7x-8yew" }, { "vulnerability": "VCID-fdzr-4k2w-8uer" }, { "vulnerability": "VCID-hbrj-cf36-wkh7" }, { "vulnerability": "VCID-jkzr-5ga8-1kh1" }, { "vulnerability": "VCID-p9zw-cggw-tkff" }, { "vulnerability": "VCID-pddx-ctd3-6bbd" }, { "vulnerability": "VCID-pmds-1qrb-87br" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@3.1dfsg-8" }, { "url": "http://public2.vulnerablecode.io/api/packages/1072625?format=api", "purl": "pkg:deb/debian/bash@3.2-4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2ant-qsbm-37d9" }, { "vulnerability": "VCID-3n27-ddbb-2uc4" }, { "vulnerability": "VCID-3nzd-713w-qygu" }, { "vulnerability": "VCID-6sdv-wm7w-kbd5" }, { "vulnerability": "VCID-6u87-8gdp-kff5" }, { "vulnerability": "VCID-7rp9-3b3v-83hq" }, { "vulnerability": "VCID-9rdp-azhv-63fd" }, { "vulnerability": "VCID-c5br-pkm3-v7a2" }, { "vulnerability": "VCID-d5ak-9k7x-8yew" }, { "vulnerability": "VCID-fdzr-4k2w-8uer" }, { "vulnerability": "VCID-hbrj-cf36-wkh7" }, { "vulnerability": "VCID-jkzr-5ga8-1kh1" }, { "vulnerability": "VCID-p9zw-cggw-tkff" }, { "vulnerability": "VCID-pddx-ctd3-6bbd" }, { "vulnerability": "VCID-pmds-1qrb-87br" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@3.2-4" }, { "url": "http://public2.vulnerablecode.io/api/packages/1072626?format=api", "purl": "pkg:deb/debian/bash@4.1-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2ant-qsbm-37d9" }, { "vulnerability": "VCID-3n27-ddbb-2uc4" }, { "vulnerability": "VCID-3nzd-713w-qygu" }, { "vulnerability": "VCID-6sdv-wm7w-kbd5" }, { "vulnerability": "VCID-6u87-8gdp-kff5" }, { "vulnerability": "VCID-7rp9-3b3v-83hq" }, { "vulnerability": "VCID-9rdp-azhv-63fd" }, { "vulnerability": "VCID-c5br-pkm3-v7a2" }, { "vulnerability": "VCID-d5ak-9k7x-8yew" }, { "vulnerability": "VCID-fdzr-4k2w-8uer" }, { "vulnerability": "VCID-hbrj-cf36-wkh7" }, { "vulnerability": "VCID-jkzr-5ga8-1kh1" }, { "vulnerability": "VCID-p9zw-cggw-tkff" }, { "vulnerability": "VCID-pddx-ctd3-6bbd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@4.1-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/1072627?format=api", "purl": "pkg:deb/debian/bash@4.1-3%2Bdeb6u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2ant-qsbm-37d9" }, { "vulnerability": "VCID-3n27-ddbb-2uc4" }, { "vulnerability": "VCID-3nzd-713w-qygu" }, { "vulnerability": "VCID-6sdv-wm7w-kbd5" }, { "vulnerability": "VCID-6u87-8gdp-kff5" }, { "vulnerability": "VCID-7rp9-3b3v-83hq" }, { "vulnerability": "VCID-9rdp-azhv-63fd" }, { "vulnerability": "VCID-c5br-pkm3-v7a2" }, { "vulnerability": "VCID-d5ak-9k7x-8yew" }, { "vulnerability": "VCID-fdzr-4k2w-8uer" }, { "vulnerability": "VCID-hbrj-cf36-wkh7" }, { "vulnerability": "VCID-jkzr-5ga8-1kh1" }, { "vulnerability": "VCID-p9zw-cggw-tkff" }, { "vulnerability": "VCID-pddx-ctd3-6bbd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@4.1-3%252Bdeb6u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1072628?format=api", "purl": "pkg:deb/debian/bash@4.2%2Bdfsg-0.1%2Bdeb7u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2ant-qsbm-37d9" }, { "vulnerability": "VCID-3n27-ddbb-2uc4" }, { "vulnerability": "VCID-3nzd-713w-qygu" }, { "vulnerability": "VCID-6sdv-wm7w-kbd5" }, { "vulnerability": "VCID-6u87-8gdp-kff5" }, { "vulnerability": "VCID-9rdp-azhv-63fd" }, { "vulnerability": "VCID-c5br-pkm3-v7a2" }, { "vulnerability": "VCID-d5ak-9k7x-8yew" }, { "vulnerability": "VCID-fdzr-4k2w-8uer" }, { "vulnerability": "VCID-hbrj-cf36-wkh7" }, { "vulnerability": "VCID-jkzr-5ga8-1kh1" }, { "vulnerability": "VCID-p9zw-cggw-tkff" }, { "vulnerability": "VCID-pddx-ctd3-6bbd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/bash@4.2%252Bdfsg-0.1%252Bdeb7u3" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6278.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-6278.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-6278", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.91694", "scoring_system": "epss", "scoring_elements": "0.99698", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.91694", "scoring_system": "epss", "scoring_elements": "0.99697", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-6278" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6278", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6278" }, { "reference_url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1008-security-advisory-0006", "reference_id": "1008-security-advisory-0006", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1008-security-advisory-0006" }, { "reference_url": "https://www.exploit-db.com/exploits/39568/", "reference_id": "39568", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://www.exploit-db.com/exploits/39568/" }, { "reference_url": "https://www.exploit-db.com/exploits/39887/", "reference_id": "39887", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://www.exploit-db.com/exploits/39887/" }, { "reference_url": "http://secunia.com/advisories/58200", "reference_id": "58200", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/58200" }, { "reference_url": "http://secunia.com/advisories/59907", "reference_id": "59907", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/59907" }, { "reference_url": "http://secunia.com/advisories/59961", "reference_id": "59961", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/59961" }, { "reference_url": "http://secunia.com/advisories/60024", "reference_id": "60024", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/60024" }, { "reference_url": "http://secunia.com/advisories/60034", "reference_id": "60034", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/60034" }, { "reference_url": "http://secunia.com/advisories/60044", "reference_id": "60044", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/60044" }, { "reference_url": "http://secunia.com/advisories/60055", "reference_id": "60055", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/60055" }, { "reference_url": "http://secunia.com/advisories/60063", "reference_id": "60063", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/60063" }, { "reference_url": "http://secunia.com/advisories/60193", "reference_id": "60193", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/60193" }, { "reference_url": "http://secunia.com/advisories/60325", "reference_id": "60325", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/60325" }, { "reference_url": "http://secunia.com/advisories/60433", "reference_id": "60433", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/60433" }, { "reference_url": "http://secunia.com/advisories/61065", "reference_id": "61065", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61065" }, { "reference_url": "http://secunia.com/advisories/61128", "reference_id": "61128", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61128" }, { "reference_url": "http://secunia.com/advisories/61129", "reference_id": "61129", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61129" }, { "reference_url": "http://secunia.com/advisories/61283", "reference_id": "61283", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61283" }, { "reference_url": "http://secunia.com/advisories/61287", "reference_id": "61287", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61287" }, { "reference_url": "http://secunia.com/advisories/61291", "reference_id": "61291", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61291" }, { "reference_url": "http://secunia.com/advisories/61312", "reference_id": "61312", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61312" }, { "reference_url": "http://secunia.com/advisories/61313", "reference_id": "61313", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61313" }, { "reference_url": "http://secunia.com/advisories/61328", "reference_id": "61328", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61328" }, { "reference_url": "http://secunia.com/advisories/61442", "reference_id": "61442", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61442" }, { "reference_url": "http://secunia.com/advisories/61471", "reference_id": "61471", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61471" }, { "reference_url": "http://secunia.com/advisories/61485", "reference_id": "61485", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61485" }, { "reference_url": "http://secunia.com/advisories/61503", "reference_id": "61503", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61503" }, { "reference_url": "http://secunia.com/advisories/61550", "reference_id": "61550", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61550" }, { "reference_url": "http://secunia.com/advisories/61552", "reference_id": "61552", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61552" }, { "reference_url": "http://secunia.com/advisories/61565", "reference_id": "61565", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61565" }, { "reference_url": "http://secunia.com/advisories/61603", "reference_id": "61603", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61603" }, { "reference_url": "http://secunia.com/advisories/61633", "reference_id": "61633", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61633" }, { "reference_url": "http://secunia.com/advisories/61641", "reference_id": "61641", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61641" }, { "reference_url": "http://secunia.com/advisories/61643", "reference_id": "61643", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61643" }, { "reference_url": "http://secunia.com/advisories/61654", "reference_id": "61654", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61654" }, { "reference_url": "http://secunia.com/advisories/61703", "reference_id": "61703", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61703" }, { "reference_url": "http://secunia.com/advisories/61780", "reference_id": "61780", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61780" }, { "reference_url": "http://secunia.com/advisories/61816", "reference_id": "61816", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61816" }, { "reference_url": "http://secunia.com/advisories/61857", "reference_id": "61857", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/61857" }, { "reference_url": "http://secunia.com/advisories/62312", "reference_id": "62312", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/62312" }, { "reference_url": "http://secunia.com/advisories/62343", "reference_id": "62343", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://secunia.com/advisories/62343" }, { "reference_url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:164", "reference_id": "advisories?name=MDVSA-2015:164", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:164" }, { "reference_url": "http://lcamtuf.blogspot.com/2014/09/bash-bug-apply-unofficial-patch-now.html", "reference_id": "bash-bug-apply-unofficial-patch-now.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://lcamtuf.blogspot.com/2014/09/bash-bug-apply-unofficial-patch-now.html" }, { "reference_url": "http://lcamtuf.blogspot.com/2014/10/bash-bug-how-we-finally-cracked.html", "reference_id": "bash-bug-how-we-finally-cracked.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://lcamtuf.blogspot.com/2014/10/bash-bug-how-we-finally-cracked.html" }, { "reference_url": "http://www.oracle.com/technetwork/topics/security/bashcve-2014-7169-2317675.html", "reference_id": "bashcve-2014-7169-2317675.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www.oracle.com/technetwork/topics/security/bashcve-2014-7169-2317675.html" }, { "reference_url": "http://packetstormsecurity.com/files/128567/CA-Technologies-GNU-Bash-Shellshock.html", "reference_id": "CA-Technologies-GNU-Bash-Shellshock.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://packetstormsecurity.com/files/128567/CA-Technologies-GNU-Bash-Shellshock.html" }, { "reference_url": "http://www.qnap.com/i/en/support/con_show.php?cid=61", "reference_id": "con_show.php?cid=61", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www.qnap.com/i/en/support/con_show.php?cid=61" }, { "reference_url": "https://support.citrix.com/article/CTX200217", "reference_id": "CTX200217", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://support.citrix.com/article/CTX200217" }, { "reference_url": "https://support.citrix.com/article/CTX200223", "reference_id": "CTX200223", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://support.citrix.com/article/CTX200223" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/cgi/webapps/39887.txt", "reference_id": "CVE-2014-6278", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/cgi/webapps/39887.txt" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/hardware/remote/39568.py", "reference_id": "CVE-2014-6278", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/hardware/remote/39568.py" }, { "reference_url": "https://security-tracker.debian.org/tracker/CVE-2014-6278", "reference_id": "CVE-2014-6278", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://security-tracker.debian.org/tracker/CVE-2014-6278" }, { "reference_url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140926-bash", "reference_id": "CVE-2014-6278", "reference_type": "exploit", "scores": [], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140926-bash" }, { "reference_url": "http://support.novell.com/security/cve/CVE-2014-6278.html", "reference_id": "CVE-2014-6278.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://support.novell.com/security/cve/CVE-2014-6278.html" }, { "reference_url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140926-bash", "reference_id": "CVE-2014-8008;CVE-2014-6271;OSVDB-126132;OSVDB-126131;OSVDB-117422", "reference_type": "exploit", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140926-bash" }, { "reference_url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c04497075", "reference_id": "display?docLocale=en_US&docId=emr_na-c04497075", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c04497075" }, { "reference_url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c04518183", "reference_id": "display?docLocale=en_US&docId=emr_na-c04518183", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-c04518183" }, { "reference_url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096315", "reference_id": "docdisplay?lndocid=MIGR-5096315", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5096315" }, { "reference_url": "http://www.novell.com/support/kb/doc.php?id=7015721", "reference_id": "doc.php?id=7015721", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www.novell.com/support/kb/doc.php?id=7015721" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=isg3T1021272", "reference_id": "docview.wss?uid=isg3T1021272", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3T1021272" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=isg3T1021279", "reference_id": "docview.wss?uid=isg3T1021279", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3T1021279" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=isg3T1021361", "reference_id": "docview.wss?uid=isg3T1021361", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=isg3T1021361" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004879", "reference_id": "docview.wss?uid=ssg1S1004879", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004879" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004897", "reference_id": "docview.wss?uid=ssg1S1004897", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004897" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004898", "reference_id": "docview.wss?uid=ssg1S1004898", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004898" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004915", "reference_id": "docview.wss?uid=ssg1S1004915", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004915" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685541", "reference_id": "docview.wss?uid=swg21685541", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685541" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685604", "reference_id": "docview.wss?uid=swg21685604", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685604" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685733", "reference_id": "docview.wss?uid=swg21685733", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685733" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685749", "reference_id": "docview.wss?uid=swg21685749", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685749" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685914", "reference_id": "docview.wss?uid=swg21685914", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21685914" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686131", "reference_id": "docview.wss?uid=swg21686131", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686131" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686246", "reference_id": "docview.wss?uid=swg21686246", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686246" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686445", "reference_id": "docview.wss?uid=swg21686445", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686445" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686479", "reference_id": "docview.wss?uid=swg21686479", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686479" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686494", "reference_id": "docview.wss?uid=swg21686494", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21686494" }, { "reference_url": "http://www-01.ibm.com/support/docview.wss?uid=swg21687079", "reference_id": "docview.wss?uid=swg21687079", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21687079" }, { "reference_url": "http://linux.oracle.com/errata/ELSA-2014-3093", "reference_id": "ELSA-2014-3093", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://linux.oracle.com/errata/ELSA-2014-3093" }, { "reference_url": "http://linux.oracle.com/errata/ELSA-2014-3094", "reference_id": "ELSA-2014-3094", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://linux.oracle.com/errata/ELSA-2014-3094" }, { "reference_url": "https://security.gentoo.org/glsa/201410-01", "reference_id": "GLSA-201410-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201410-01" }, { "reference_url": "http://jvn.jp/en/jp/JVN55667175/index.html", "reference_id": "index.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://jvn.jp/en/jp/JVN55667175/index.html" }, { "reference_url": "https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10648", "reference_id": "index?page=content&id=JSA10648", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10648" }, { "reference_url": "https://kb.bluecoat.com/index?page=content&id=SA82", "reference_id": "index?page=content&id=SA82", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://kb.bluecoat.com/index?page=content&id=SA82" }, { "reference_url": "https://kc.mcafee.com/corporate/index?page=content&id=SB10085", "reference_id": "index?page=content&id=SB10085", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://kc.mcafee.com/corporate/index?page=content&id=SB10085" }, { "reference_url": "http://jvndb.jvn.jp/jvndb/JVNDB-2014-000126", "reference_id": "JVNDB-2014-000126", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2014-000126" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141330468527613&w=2", "reference_id": "?l=bugtraq&m=141330468527613&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141330468527613&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141345648114150&w=2", "reference_id": "?l=bugtraq&m=141345648114150&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141345648114150&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141383026420882&w=2", "reference_id": "?l=bugtraq&m=141383026420882&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141383026420882&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141383081521087&w=2", "reference_id": "?l=bugtraq&m=141383081521087&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141383081521087&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141383196021590&w=2", "reference_id": "?l=bugtraq&m=141383196021590&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141383196021590&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141383244821813&w=2", "reference_id": "?l=bugtraq&m=141383244821813&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141383244821813&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141383304022067&w=2", "reference_id": "?l=bugtraq&m=141383304022067&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141383304022067&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141383353622268&w=2", "reference_id": "?l=bugtraq&m=141383353622268&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141383353622268&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141383465822787&w=2", "reference_id": "?l=bugtraq&m=141383465822787&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141383465822787&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141450491804793&w=2", "reference_id": "?l=bugtraq&m=141450491804793&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141450491804793&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141576728022234&w=2", "reference_id": "?l=bugtraq&m=141576728022234&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141576728022234&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141577137423233&w=2", "reference_id": "?l=bugtraq&m=141577137423233&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141577137423233&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141577241923505&w=2", "reference_id": "?l=bugtraq&m=141577241923505&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141577241923505&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141577297623641&w=2", "reference_id": "?l=bugtraq&m=141577297623641&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141577297623641&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141585637922673&w=2", "reference_id": "?l=bugtraq&m=141585637922673&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141585637922673&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=141879528318582&w=2", "reference_id": "?l=bugtraq&m=141879528318582&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=141879528318582&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=142118135300698&w=2", "reference_id": "?l=bugtraq&m=142118135300698&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=142118135300698&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=142358026505815&w=2", "reference_id": "?l=bugtraq&m=142358026505815&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=142358026505815&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=142358078406056&w=2", "reference_id": "?l=bugtraq&m=142358078406056&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=142358078406056&w=2" }, { "reference_url": "http://marc.info/?l=bugtraq&m=142721162228379&w=2", "reference_id": "?l=bugtraq&m=142721162228379&w=2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://marc.info/?l=bugtraq&m=142721162228379&w=2" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00004.html", "reference_id": "msg00004.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00004.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2014-10/msg00025.html", "reference_id": "msg00025.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://lists.opensuse.org/opensuse-updates/2014-10/msg00025.html" }, { "reference_url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk102673&src=securityAlerts", "reference_id": "portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk102673&src=securityAlerts", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk102673&src=securityAlerts" }, { "reference_url": "https://www.suse.com/support/shellshock/", "reference_id": "shellshock", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://www.suse.com/support/shellshock/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1147414", "reference_id": "show_bug.cgi?id=1147414", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1147414" }, { "reference_url": "https://support.f5.com/kb/en-us/solutions/public/15000/600/sol15629.html", "reference_id": "sol15629.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "https://support.f5.com/kb/en-us/solutions/public/15000/600/sol15629.html" }, { "reference_url": "http://packetstormsecurity.com/files/137344/Sun-Secure-Global-Desktop-Oracle-Global-Desktop-Shellshock.html", "reference_id": "Sun-Secure-Global-Desktop-Oracle-Global-Desktop-Shellshock.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://packetstormsecurity.com/files/137344/Sun-Secure-Global-Desktop-Oracle-Global-Desktop-Shellshock.html" }, { "reference_url": "https://usn.ubuntu.com/2380-1/", "reference_id": "USN-2380-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2380-1/" }, { "reference_url": "http://www.ubuntu.com/usn/USN-2380-1", "reference_id": "USN-2380-1", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www.ubuntu.com/usn/USN-2380-1" }, { "reference_url": "http://www.vmware.com/security/advisories/VMSA-2014-0010.html", "reference_id": "VMSA-2014-0010.html", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-10-02T03:55:45Z/" } ], "url": "http://www.vmware.com/security/advisories/VMSA-2014-0010.html" } ], "weaknesses": [ { "cwe_id": 119, "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer", "description": "The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer." } ], "exploits": [ { "date_added": "2025-10-02", "description": "GNU Bash contains an OS command injection vulnerability which allows remote attackers to execute arbitrary commands via a crafted environment.", "required_action": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. ", "due_date": "2025-10-23", "notes": "This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: http://ftp.gnu.org/gnu/bash/bash-4.3-patches/bash43-027 ; https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/23467 ; https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140926-bash ; https://www.ibm.com/support/pages/security-bulletin-update-vulnerabilities-bash-affect-aix-toolbox-linux-applications-cve-2014-6271-cve-2014-6277-cve-2014-6278-cve-2014-7169-cve-2014-7186-and-cve-2014-7187 ; https://nvd.nist.gov/vuln/detail/CVE-2014-6278", "known_ransomware_campaign_use": false, "source_date_published": null, "exploit_type": null, "platform": null, "source_date_updated": null, "data_source": "KEV", "source_url": null }, { "date_added": null, "description": "This module exploits the Shellshock vulnerability, a flaw in how the Bash shell\n handles external environment variables. This module targets CUPS filters through\n the PRINTER_INFO and PRINTER_LOCATION variables. A valid username and password is\n required to exploit this vulnerability through CUPS.", "required_action": null, "due_date": null, "notes": "Stability:\n - crash-safe\nSideEffects: []\nReliability: []\nAKA:\n - Shellshock\n", "known_ransomware_campaign_use": false, "source_date_published": "2014-09-24", "exploit_type": null, "platform": "Unix", "source_date_updated": null, "data_source": "Metasploit", "source_url": "https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/multi/http/cups_bash_env_exec.rb" }, { "date_added": "2014-10-02", "description": "GNU bash 4.3.11 - Environment Variable dhclient", "required_action": null, "due_date": null, "notes": null, "known_ransomware_campaign_use": false, "source_date_published": "2014-10-02", "exploit_type": "remote", "platform": "linux", "source_date_updated": "2014-10-02", "data_source": "Exploit-DB", "source_url": "" } ], "severity_range_score": "8.8 - 8.8", "exploitability": "2.0", "weighted_severity": "7.9", "risk_score": 10.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fdzr-4k2w-8uer" }