CVE-2014-6278CISA KEV: Actively Exploited

GNU Bash OS Command Injection Vulnerability

Published Oct 2, 2025·Updated Oct 2, 2025

Description

GNU Bash contains an OS command injection vulnerability which allows remote attackers to execute arbitrary commands via a crafted environment.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free