Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-09-04 | CVE-2024-44383 | Command Injection vulnerability in Wayos Fbm-291W Firmware 19.09.11 WAYOS FBM-291W v19.09.11 is vulnerable to Command Execution via msp_info_htm. | 6.8 |
2024-09-04 | CVE-2024-44400 | Command Injection vulnerability in Dlink Di-8400 Firmware 16.07.26A1 D-Link DI-8400 16.07.26A1 is vulnerable to Command Injection via upgrade_filter_asp. | 9.8 |
2024-08-27 | CVE-2024-8212 | Command Injection vulnerability in Dlink products A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814. | 9.8 |
2024-08-26 | CVE-2023-26315 | Command Injection vulnerability in MI Ax9000 Firmware The Xiaomi router AX9000 has a post-authentication command injection vulnerability. | 8.8 |
2024-08-19 | CVE-2024-7922 | Command Injection vulnerability in Dell products A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814 and classified as critical. | 9.8 |
2024-08-18 | CVE-2024-7907 | Command Injection vulnerability in Totolink X6000R Firmware 9.4.0Cu.852B20230719 A vulnerability, which was classified as critical, has been found in TOTOLINK X6000R 9.4.0cu.852_20230719. | 9.8 |
2024-08-15 | CVE-2024-7833 | Command Injection vulnerability in Dlink Di-8100 Firmware 16.07 A vulnerability was found in D-Link DI-8100 16.07. | 9.8 |
2024-08-14 | CVE-2024-42360 | Command Injection vulnerability in Wurmlab Sequenceserver SequenceServer lets you rapidly set up a BLAST+ server with an intuitive user interface for personal or group use. | 9.8 |
2024-08-14 | CVE-2024-5914 | Command Injection vulnerability in Paloaltonetworks Cortex Xsoar Commonscripts A command injection issue in Palo Alto Networks Cortex XSOAR CommonScripts Pack allows an unauthenticated attacker to execute arbitrary commands within the context of an integration container. | 9.8 |
2024-08-12 | CVE-2024-37023 | Command Injection vulnerability in Vonets products Multiple OS command injection vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and prior, enable an authenticated remote attacker to execute arbitrary OS commands via various endpoint parameters. | 9.9 |