Vulnerabilities > Argument Injection or Modification

DATE CVE VULNERABILITY TITLE RISK
2024-11-15 CVE-2021-1484 A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to inject arbitrary commands on an affected system and cause a denial of service (DoS) condition. This vulnerability is due to improper input validation of user-supplied input to the device template configuration.
network
low complexity
CWE-88
6.5
2024-10-08 CVE-2024-47553 Argument Injection or Modification vulnerability in Siemens Sinec Security Monitor
A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0).
network
low complexity
siemens CWE-88
critical
9.9
2024-10-02 CVE-2024-20444 Argument Injection or Modification vulnerability in Cisco Nexus Dashboard Fabric Controller
A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC), formerly Cisco Data Center Network Manager (DCNM), could allow an authenticated, remote attacker with network-admin privileges to perform a command injection attack against an affected device. &nbsp; This vulnerability is due to insufficient validation of command arguments.
network
low complexity
cisco CWE-88
5.5
2024-09-04 CVE-2024-43402 Argument Injection or Modification vulnerability in Rust-Lang Rust
Rust is a programming language.
local
low complexity
rust-lang CWE-88
8.8
2024-04-16 CVE-2024-3367 Argument Injection or Modification vulnerability in Checkmk
Argument injection in websphere_mq agent plugin in Checkmk 2.0.0, 2.1.0, <2.2.0p26 and <2.3.0b5 allows local attacker to inject one argument to runmqsc
local
low complexity
checkmk CWE-88
5.5
2024-01-21 CVE-2024-23731 Argument Injection or Modification vulnerability in Embedchain
The OpenAPI loader in Embedchain before 0.1.57 allows attackers to execute arbitrary code, related to the openapi.py yaml.load function argument.
network
low complexity
embedchain CWE-88
critical
9.8
2024-01-17 CVE-2023-20260 Argument Injection or Modification vulnerability in Cisco Prime Infrastructure
A vulnerability in the application CLI of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager could allow an authenticated, local attacker to gain escalated privileges.
local
low complexity
cisco CWE-88
6.7
2023-12-29 CVE-2023-47804 Argument Injection or Modification vulnerability in Apache Openoffice
Apache OpenOffice documents can contain links that call internal macros with arbitrary arguments.
network
low complexity
apache CWE-88
8.8
2023-12-26 CVE-2023-46681 Argument Injection or Modification vulnerability in Buffalo Vr-S1000 Firmware
Improper neutralization of argument delimiters in a command ('Argument Injection') vulnerability in VR-S1000 firmware Ver.
local
low complexity
buffalo CWE-88
7.8
2023-12-05 CVE-2023-6269 Argument Injection or Modification vulnerability in Atos products
An argument injection vulnerability has been identified in the administrative web interface of the Atos Unify OpenScape products "Session Border Controller" (SBC) and "Branch", before version V10 R3.4.0, and OpenScape "BCF" before versions V10R10.12.00 and V10R11.05.02.
network
low complexity
atos CWE-88
critical
9.8