Vulnerabilities > Improper Control of Generation of Code ('Code Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-13 | CVE-2021-45806 | Code Injection vulnerability in Jpress 4.2.0 jpress v4.2.0 admin panel provides a function through which attackers can modify the template and inject some malicious code. | 8.8 |
| 2022-01-10 | CVE-2022-22285 | Code Injection vulnerability in Samsung Reminder 11.6.08.6000/12.2.05.6000/12.3.01.3000 A vulnerability using PendingIntent in Reminder prior to version 12.2.05.0 in Android R(11.0) and 12.3.02.1000 in Android S(12.0) allows attackers to execute privileged action by hijacking and modifying the intent. | 7.1 |
| 2022-01-10 | CVE-2022-22286 | Code Injection vulnerability in Samsung Bixby Routines A vulnerability using PendingIntent in Bixby Routines prior to version 3.1.21.8 in Android R(11.0) and 2.6.30.5 in Android Q(10.0) allows attackers to execute privileged action by hijacking and modifying the intent. | 7.1 |
| 2022-01-03 | CVE-2021-39979 | Code Injection vulnerability in Huawei Harmonyos HHEE system has a Code Injection vulnerability.Successful exploitation of this vulnerability may affect HHEE system integrity. | 9.8 |
| 2021-12-22 | CVE-2020-20601 | Code Injection vulnerability in Thinkcmf An issue in ThinkCMF X2.2.2 and below allows attackers to execute arbitrary code via a crafted packet. | 9.8 |
| 2021-12-16 | CVE-2021-43837 | Code Injection vulnerability in Vault-Cli Project Vault-Cli vault-cli is a configurable command-line interface tool (and python library) to interact with Hashicorp Vault. | 9.1 |
| 2021-12-14 | CVE-2021-44231 | Code Injection vulnerability in SAP Abap Platform and Netweaver Application Server Abap Internally used text extraction reports allow an attacker to inject code that can be executed by the application. | 9.8 |
| 2021-12-08 | CVE-2021-44529 | Code Injection vulnerability in Ivanti Endpoint Manager Cloud Services Appliance 4.5/4.6 A code injection vulnerability in the Ivanti EPM Cloud Services Appliance (CSA) allows an unauthenticated user to execute arbitrary code with limited permissions (nobody). | 9.8 |
| 2021-12-08 | CVE-2021-37097 | Code Injection vulnerability in Huawei Emui, Harmonyos and Magic UI There is a Code Injection vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to system restart. | 7.5 |
| 2021-12-07 | CVE-2021-37079 | Code Injection vulnerability in Huawei Harmonyos There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to delete arbitrary file by system_app permission. | 9.1 |