Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-03 | CVE-2024-7436 | Command Injection vulnerability in Dlink Di-8100 Firmware 16.07 A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07. | 8.8 |
| 2024-08-02 | CVE-2024-42348 | Command Injection vulnerability in Fogproject 1.5.10.41 FOG is a cloning/imaging/rescue suite/inventory management system. | 8.6 |
| 2024-08-02 | CVE-2024-7029 | Command Injection vulnerability in Avtech Avm1203 Firmware Commands can be injected over the network and executed without authentication. | 9.8 |
| 2024-07-31 | CVE-2022-4002 | Command Injection vulnerability in Motorola Q14 Firmware A command injection vulnerability could allow an authenticated user to execute operating system commands as root via a specially crafted API request. | 7.2 |
| 2024-07-29 | CVE-2024-7177 | Command Injection vulnerability in Totolink A3600R Firmware 4.1.2Cu.5182B20201102 A vulnerability was found in TOTOLINK A3600R 4.1.2cu.5182_B20201102. | 8.8 |
| 2024-07-29 | CVE-2024-7174 | Command Injection vulnerability in Totolink A3600R Firmware 4.1.2Cu.5182B20201102 A vulnerability, which was classified as critical, was found in TOTOLINK A3600R 4.1.2cu.5182_B20201102. | 8.8 |
| 2024-07-25 | CVE-2024-38288 | Command Injection vulnerability in Rhubcom Turbomeeting A command-injection issue in the Certificate Signing Request (CSR) functionality in R-HUB TurboMeeting through 8.x allows authenticated attackers with administrator privileges to execute arbitrary commands on the underlying server as root. | 7.2 |
| 2024-07-23 | CVE-2024-41319 | Command Injection vulnerability in Totolink A6000R Firmware 1.0.1B20201211.2000 TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the cmd parameter in the webcmd function. | 9.8 |
| 2024-07-09 | CVE-2024-39571 | Command Injection vulnerability in Siemens Sinema Remote Connect Server A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 HF1). | 8.8 |
| 2024-07-09 | CVE-2024-4944 | Command Injection vulnerability in Watchguard Mobile VPN With SSL A local privilege escalation vlnerability in the WatchGuard Mobile VPN with SSL client on Windows enables a local user to execute arbitrary commands with elevated privileged. | 7.8 |