Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')

DATE CVE VULNERABILITY TITLE RISK
2024-12-17 CVE-2024-12356 Command Injection vulnerability in Beyondtrust Remote Support
A critical vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS) products which can allow an unauthenticated attacker to inject commands that are run as a site user.
network
low complexity
beyondtrust CWE-77
critical
9.8
2024-12-13 CVE-2024-55956 Command Injection vulnerability in Cleo Harmony, Lexicom and Vltrader
In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom before 5.8.0.24, an unauthenticated user can import and execute arbitrary Bash or PowerShell commands on the host system by leveraging the default settings of the Autorun directory.
network
low complexity
cleo CWE-77
critical
9.8
2024-11-25 CVE-2024-11659 Command Injection vulnerability in Engeniustech products
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118 and classified as critical.
network
low complexity
engeniustech CWE-77
7.2
2024-11-25 CVE-2024-11657 Command Injection vulnerability in Engeniustech products
A vulnerability, which was classified as critical, was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
network
low complexity
engeniustech CWE-77
7.2
2024-11-25 CVE-2024-11658 Command Injection vulnerability in Engeniustech products
A vulnerability has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118 and classified as critical.
network
low complexity
engeniustech CWE-77
7.2
2024-11-25 CVE-2024-11655 Command Injection vulnerability in Engeniustech products
A vulnerability classified as critical was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
network
low complexity
engeniustech CWE-77
7.2
2024-11-25 CVE-2024-11656 Command Injection vulnerability in Engeniustech products
A vulnerability, which was classified as critical, has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
network
low complexity
engeniustech CWE-77
7.2
2024-11-25 CVE-2024-11653 Command Injection vulnerability in Engeniustech products
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
network
low complexity
engeniustech CWE-77
7.2
2024-11-25 CVE-2024-11654 Command Injection vulnerability in Engeniustech products
A vulnerability classified as critical has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
network
low complexity
engeniustech CWE-77
7.2
2024-11-25 CVE-2024-11651 Command Injection vulnerability in Engeniustech products
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118.
network
low complexity
engeniustech CWE-77
7.2