CVE-2016-7543

HIGH

Bash < 4.3 - Local Privilege Escalation via SHELLOPTS and PS4 Environment Variables

Title source: llm
STIX 2.1

Description

Bash before 4.4 allows local users to execute arbitrary commands with root privileges via crafted SHELLOPTS and PS4 environment variables.

References (11)

Core 11
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2017-0725.html
Vendor Advisory vendor-advisory x_refsource_redhat
https://access.redhat.com/errata/RHSA-2017:1931
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2016/09/26/9
Patch, Vendor Advisory mailing-list x_refsource_mlist
https://lists.gnu.org/archive/html/bug-bash/2016-09/msg00018.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/93183
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1037812
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201701-02

Scores

CVSS v3 8.4
EPSS 0.0010
EPSS Percentile 27.4%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-20
Status published
Products (4)
fedoraproject/fedora 23
fedoraproject/fedora 24
fedoraproject/fedora 25
gnu/bash < 4.3
Published Jan 19, 2017
Tracked Since Feb 18, 2026