CVE20147169

CVE-2014-7169 is a critical vulnerability that affected the Bash shell, a common command-line interpreter used in many Unix-like operating systems, including Linux and macOS. This vulnerability, often referred to as the "Shellshock" bug, was publicly disclosed in September 2014.

The vulnerability stemmed from how Bash handled functions defined in environment variables. Specifically, when Bash parsed

Exploitation could occur through various network-facing services that used Bash, such as web servers running CGI

The widespread nature of Bash and the ease of exploitation made Shellshock a significant security concern.