Bash
by Gnu
Take action — actively targeted
Bash is actively targeted by attackers. A significant proportion of its known vulnerabilities are being exploited.
What to do
- Apply all available updates immediately
- Review your exposure — is this internet-facing?
- Monitor vendor advisories for this product
What Attackers Target
Vulnerabilities with high exploit probability
36.4%
Confirmed actively exploited (CISA)
27.3%
Public exploit code available
27.3%
Based on 11 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2014-6271 | 9.8 | 94.2% | Yes |
| CVE-2014-7169 | 9.8 | 90.1% | Yes |
| CVE-2014-6278 | 8.8 | 90.1% | Yes |
| CVE-2019-18276 | 7.8 | 49.6% | — |
| CVE-2016-0634 | 7.5 | 2.2% | — |
| CVE-2019-9924 | 7.8 | 0.3% | — |
| CVE-2017-5932 | 7.8 | 0.2% | — |
| CVE-2016-7543 | 8.4 | 0.1% | — |
| CVE-2012-6711 | 7.0 | 0.1% | — |
| CVE-2016-9401 | 5.5 | 0.1% | — |
| CVE-2022-3715 | 7.8 | 0.0% | — |
59
/ 100
high-risk
Active Threat
30/50 · High
Exploit Availability
29/50 · Moderate
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.