{"document":{"category":"csaf_vex","csaf_version":"2.1","notes":[{"category":"summary","text":"Palo Alto Networks PSIRT provided VEX document. This document is autogenerated.","title":"Bash Shell remote code execution (CVE-2014-6271, CVE-2014-7169)"}],"publisher":{"category":"vendor","name":"Palo Alto Networks","namespace":"https://security.paloaltonetworks.com"},"title":"Palo Alto Networks PSIRT provided VEX document: PAN-SA-2014-0004","distribution":{"text":"Copyright © 2024 Palo Alto Networks. All rights reserved.","tlp":{"label":"CLEAR","url":"https://www.first.org/tlp/"}},"tracking":{"current_release_date":"2026-07-14T23:42:15.739Z","generator":{"date":"2026-07-14T23:42:15.739Z","engine":{"name":"Vulnogram","version":"0.0.9"}},"id":"PAN-SA-2014-0004","initial_release_date":"2014-09-24T07:00:00.000Z","revision_history":[{"number":"1","date":"2026-07-14T16:42:15.000Z","summary":"Initial release"}],"status":"final","version":"1"}},"product_tree":{"branches":[{"name":"Palo Alto Networks","category":"vendor","branches":[{"name":"PAN-OS","category":"product_name","branches":[{"category":"product_version_range","name":"vers:generic/PAN-OS<=5.0.14","product":{"name":"Palo Alto Networks PAN-OS","product_id":"PANW-PAN-OS-483"}},{"category":"product_version_range","name":"vers:generic/PAN-OS>=5.0.15","product":{"name":"Palo Alto Networks PAN-OS","product_id":"PANW-PAN-OS-472"}},{"category":"product_version_range","name":"vers:generic/PAN-OS<=5.1.9","product":{"name":"Palo Alto Networks PAN-OS","product_id":"PANW-PAN-OS-482"}},{"category":"product_version_range","name":"vers:generic/PAN-OS>=5.1.10","product":{"name":"Palo Alto Networks PAN-OS","product_id":"PANW-PAN-OS-471"}},{"category":"product_version_range","name":"vers:generic/PAN-OS<=6.0.5","product":{"name":"Palo Alto Networks PAN-OS","product_id":"PANW-PAN-OS-480"}},{"category":"product_version_range","name":"vers:generic/PAN-OS>=6.0.6","product":{"name":"Palo Alto Networks PAN-OS","product_id":"PANW-PAN-OS-481"}},{"category":"product_version_range","name":"vers:generic/PAN-OS<=6.1.0","product":{"name":"Palo Alto Networks PAN-OS","product_id":"PANW-PAN-OS-751"}},{"category":"product_version_range","name":"vers:generic/PAN-OS>=6.1.1.","product":{"name":"Palo Alto Networks PAN-OS","product_id":"PANW-PAN-OS-752"}}]}]}]},"vulnerabilities":[{"cve":"CVE-2014-6271","product_status":{"fixed":["PANW-PAN-OS-472","PANW-PAN-OS-471","PANW-PAN-OS-481","PANW-PAN-OS-752"],"known_affected":["PANW-PAN-OS-483","PANW-PAN-OS-482","PANW-PAN-OS-480","PANW-PAN-OS-751"]},"notes":[{"category":"description","text":"GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution, aka \"ShellShock.\"  NOTE: the original fix for this issue was incorrect; CVE-2014-7169 has been assigned to cover the vulnerability that is still present after the incorrect fix."}],"references":[{"category":"external","summary":"NVD - CVE-2014-6271","url":"https://nvd.nist.gov/vuln/detail/CVE-2014-6271"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2014-0004","url":"https://security.paloaltonetworks.com/PAN-SA-2014-0004"}],"threats":[{"category":"impact","description":"GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution, aka \"ShellShock.\"  NOTE: the original fix for this issue was incorrect; CVE-2014-7169 has been assigned to cover the vulnerability that is still present after the incorrect fix."}]},{"cve":"CVE-2014-7169","product_status":{"fixed":["PANW-PAN-OS-472","PANW-PAN-OS-471","PANW-PAN-OS-481","PANW-PAN-OS-752"],"known_affected":["PANW-PAN-OS-483","PANW-PAN-OS-482","PANW-PAN-OS-480","PANW-PAN-OS-751"]},"notes":[{"category":"description","text":"GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-6271."}],"references":[{"category":"external","summary":"NVD - CVE-2014-7169","url":"https://nvd.nist.gov/vuln/detail/CVE-2014-7169"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2014-0004","url":"https://security.paloaltonetworks.com/PAN-SA-2014-0004"}],"threats":[{"category":"impact","description":"GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or possibly have unknown other impact via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-6271."}]}]}