Vulnerabilities > Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-21 | CVE-2017-18805 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 6.7 |
| 2020-04-21 | CVE-2017-18804 | Injection vulnerability in Netgear R7800 Firmware and R9000 Firmware Certain NETGEAR devices are affected by command injection. | 6.7 |
| 2020-04-21 | CVE-2017-18802 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 6.7 |
| 2020-04-21 | CVE-2017-18806 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 6.7 |
| 2020-04-20 | CVE-2017-18849 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 7.8 |
| 2020-04-20 | CVE-2017-18841 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 6.7 |
| 2020-04-20 | CVE-2017-18851 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.7 |
| 2020-04-16 | CVE-2020-7111 | Injection vulnerability in Arubanetworks Clearpass A server side injection vulnerability exists which could allow an authenticated administrative user to achieve Remote Code Execution in ClearPass. | 7.2 |
| 2020-04-16 | CVE-2020-11814 | Injection vulnerability in Qdpm 9.1 A Host Header Injection vulnerability in qdPM 9.1 may allow an attacker to spoof a particular header and redirect users to malicious websites. | 5.4 |
| 2020-04-12 | CVE-2020-11709 | Injection vulnerability in Cpp-Httplib Project Cpp-Httplib cpp-httplib through 0.5.8 does not filter \r\n in parameters passed into the set_redirect and set_header functions, which creates possibilities for CRLF injection and HTTP response splitting in some specific contexts. | 7.5 |