Vulnerabilities > Improper Control of Generation of Code ('Code Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-20 | CVE-2021-43269 | Code Injection vulnerability in Code42 In Code42 app before 8.8.0, eval injection allows an attacker to change a device’s proxy configuration to use a malicious proxy auto-config (PAC) file, leading to arbitrary code execution. | 8.8 |
| 2022-01-14 | CVE-2021-32649 | Code Injection vulnerability in Octobercms October October CMS is a self-hosted content management system (CMS) platform based on the Laravel PHP Framework. | 8.8 |
| 2022-01-14 | CVE-2021-32650 | Code Injection vulnerability in Octobercms October 1.0.472/1.1.5 October CMS is a self-hosted content management system (CMS) platform based on the Laravel PHP Framework. | 8.8 |
| 2022-01-13 | CVE-2021-34994 | Code Injection vulnerability in Commvault Commcell 11.22.22 This vulnerability allows remote attackers to execute arbitrary code on affected installations of Commvault CommCell 11.22.22. | 8.8 |
| 2022-01-13 | CVE-2021-45806 | Code Injection vulnerability in Jpress 4.2.0 jpress v4.2.0 admin panel provides a function through which attackers can modify the template and inject some malicious code. | 8.8 |
| 2022-01-10 | CVE-2022-22285 | Code Injection vulnerability in Samsung Reminder 11.6.08.6000/12.2.05.6000/12.3.01.3000 A vulnerability using PendingIntent in Reminder prior to version 12.2.05.0 in Android R(11.0) and 12.3.02.1000 in Android S(12.0) allows attackers to execute privileged action by hijacking and modifying the intent. | 7.1 |
| 2022-01-10 | CVE-2022-22286 | Code Injection vulnerability in Samsung Bixby Routines A vulnerability using PendingIntent in Bixby Routines prior to version 3.1.21.8 in Android R(11.0) and 2.6.30.5 in Android Q(10.0) allows attackers to execute privileged action by hijacking and modifying the intent. | 7.1 |
| 2022-01-03 | CVE-2021-39979 | Code Injection vulnerability in Huawei Harmonyos HHEE system has a Code Injection vulnerability.Successful exploitation of this vulnerability may affect HHEE system integrity. | 9.8 |
| 2021-12-22 | CVE-2020-20601 | Code Injection vulnerability in Thinkcmf An issue in ThinkCMF X2.2.2 and below allows attackers to execute arbitrary code via a crafted packet. | 9.8 |
| 2021-12-16 | CVE-2021-43837 | Code Injection vulnerability in Vault-Cli Project Vault-Cli vault-cli is a configurable command-line interface tool (and python library) to interact with Hashicorp Vault. | 9.1 |