Vulnerabilities > Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-29 | CVE-2017-18856 | Injection vulnerability in Netgear Readynas OS Firmware NETGEAR ReadyNAS devices before 6.6.1 are affected by command injection. | 6.7 |
| 2020-04-29 | CVE-2017-18855 | Injection vulnerability in Netgear Wnr854T Firmware NETGEAR WNR854T devices before 1.5.2 are affected by command execution. | 8.8 |
| 2020-04-29 | CVE-2017-18854 | Injection vulnerability in Netgear Readynas OS Firmware NETGEAR ReadyNAS 6.6.1 and earlier is affected by command injection. | 6.7 |
| 2020-04-29 | CVE-2020-8478 | Injection vulnerability in ABB Base Software, MMS Server and OPC Server Insufficient protection of the inter-process communication functions in ABB System 800xA products OPC Server for AC 800M, MMS Server for AC 800M and Base Software for SoftControl (all published versions) enables an attacker authenticated on the local system to inject data, affecting the online view of runtime data shown in Control Builder. | 3.3 |
| 2020-04-28 | CVE-2018-21208 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 8.8 |
| 2020-04-28 | CVE-2017-18863 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command execution via a PHP form. | 7.1 |
| 2020-04-24 | CVE-2018-21228 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.8 |
| 2020-04-24 | CVE-2018-21227 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.8 |
| 2020-04-23 | CVE-2017-18737 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 8.8 |
| 2020-04-23 | CVE-2017-18736 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. | 8.8 |