{"vulnerability": "CVE-2014-7187", "sightings": [{"uuid": "a611bb9f-b795-4c16-835d-0a1e9b75ca12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2014-7187", "type": "exploited", "source": "https://gist.github.com/S1131/5d8917283842e71d7d693ebeb63a7f89", "content": "", "creation_timestamp": "2025-02-12T05:35:02.000000Z"}, {"uuid": "d545f9ae-4faa-4f06-8529-9ef28d60a011", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2014-7187", "type": "seen", "source": "https://t.me/arpsyndicate/2021", "content": "#ExploitObserverAlert\n\nCVE-2014-7187\n\nDESCRIPTION: Exploit Observer has 146 entries related to CVE-2014-7187. Off-by-one error in the read_token_word function in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via deeply nested for loops, aka the \"word_lineno\" issue.\n\nFIRST-EPSS: 0.973790000\nNVD-IS: 10.0\nNVD-ES: 10.0", "creation_timestamp": "2023-12-18T16:17:07.000000Z"}, {"uuid": "2d93244d-f8c0-4150-9b90-952ab1bf3cbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "db99543d-496c-4eef-ad0a-2df2093364df", "vulnerability": "CVE-2014-7187", "type": "confirmed", "source": "https://www.exploit-db.com/exploits/36933", "content": "", "creation_timestamp": "2014-09-29T00:00:00.000000Z"}]}