Vulnerabilities > Argument Injection or Modification

DATE CVE VULNERABILITY TITLE RISK
2020-06-16 CVE-2020-7496 Argument Injection or Modification vulnerability in SE Ecostruxure Operator Terminal Expert 3.1
A CWE-88: Argument Injection or Modification vulnerability exists in EcoStruxure Operator Terminal Expert 3.1 Service Pack 1 and prior (formerly known as Vijeo XD)which could cause unauthorized write access when opening the project file.
local
low complexity
se CWE-88
7.8
2020-05-21 CVE-2020-7808 Argument Injection or Modification vulnerability in Raonwiz Raon K Upload 2018.0.2.51
In RAONWIZ K Upload v2018.0.2.51 and prior, automatic update processing without integrity check on update module(web.js) allows an attacker to modify arguments which causes downloading a random DLL and injection on it.
network
low complexity
raonwiz CWE-88
critical
9.8
2020-03-16 CVE-2020-1738 Argument Injection or Modification vulnerability in Redhat products
A flaw was found in Ansible Engine when the module package or service is used and the parameter 'use' is not specified.
local
high complexity
redhat CWE-88
3.9
2020-03-16 CVE-2020-5546 Argument Injection or Modification vulnerability in Mitsubishielectric Iu1-1M20-D Firmware 1.0.7
Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in TCP function included in the firmware of Mitsubishi Electric MELQIC IU1 series IU1-1M20-D firmware version 1.0.7 and earlier allows an attacker on the same network segment to stop the network functions or execute malware via a specially crafted packet.
low complexity
mitsubishielectric CWE-88
8.8
2020-03-02 CVE-2020-6799 Argument Injection or Modification vulnerability in Mozilla Firefox
Command line arguments could have been injected during Firefox invocation as a shell handler for certain unsupported file types.
network
low complexity
mozilla CWE-88
8.8
2019-11-21 CVE-2019-18888 Argument Injection or Modification vulnerability in multiple products
An issue was discovered in Symfony 2.8.0 through 2.8.50, 3.4.0 through 3.4.34, 4.2.0 through 4.2.11, and 4.3.0 through 4.3.7.
network
low complexity
sensiolabs fedoraproject CWE-88
7.5
2019-10-24 CVE-2019-5013 Argument Injection or Modification vulnerability in Wacom Driver 6.3.323
An exploitable privilege escalation vulnerability exists in the Wacom, driver version 6.3.32-3, update helper service in the start/stopLaunchDProcess command.
local
low complexity
wacom CWE-88
7.8
2019-10-24 CVE-2019-5012 Argument Injection or Modification vulnerability in Wacom Driver 6.3.323
An exploitable privilege escalation vulnerability exists in the Wacom, driver version 6.3.32-3, update helper service in the startProcess command.
local
low complexity
wacom CWE-88
7.8
2019-10-22 CVE-2019-12148 Argument Injection or Modification vulnerability in Sangoma Session Border Controller Firmware 2.3.23119Ga
The Sangoma Session Border Controller (SBC) 2.3.23-119 GA web interface is vulnerable to an authentication bypass via an argument injection vulnerability involving special characters in the username field.
network
low complexity
sangoma CWE-88
critical
9.8
2019-10-22 CVE-2019-12147 Argument Injection or Modification vulnerability in Sangoma Session Border Controller Firmware 2.3.23119Ga
The Sangoma Session Border Controller (SBC) 2.3.23-119 GA web interface is vulnerable to Argument Injection via special characters in the username field.
network
low complexity
sangoma CWE-88
critical
9.8