Vulnerabilities > Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-21 | CVE-2017-18792 | Injection vulnerability in Netgear D6100 Firmware NETGEAR D6100 devices before 1.0.0.50_0.0.50 are affected by command injection. | 8.4 |
| 2020-04-21 | CVE-2017-18805 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 6.7 |
| 2020-04-21 | CVE-2017-18804 | Injection vulnerability in Netgear R7800 Firmware and R9000 Firmware Certain NETGEAR devices are affected by command injection. | 6.7 |
| 2020-04-21 | CVE-2017-18802 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 6.7 |
| 2020-04-21 | CVE-2017-18806 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 6.7 |
| 2020-04-20 | CVE-2017-18849 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 7.8 |
| 2020-04-20 | CVE-2017-18841 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection. | 6.7 |
| 2020-04-20 | CVE-2017-18851 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by command injection by an authenticated user. | 6.7 |
| 2020-04-16 | CVE-2020-7111 | Injection vulnerability in Arubanetworks Clearpass A server side injection vulnerability exists which could allow an authenticated administrative user to achieve Remote Code Execution in ClearPass. | 7.2 |
| 2020-04-16 | CVE-2020-11814 | Injection vulnerability in Qdpm 9.1 A Host Header Injection vulnerability in qdPM 9.1 may allow an attacker to spoof a particular header and redirect users to malicious websites. | 5.4 |