Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')

DATE CVE VULNERABILITY TITLE RISK
2017-11-30 CVE-2017-12335 Command Injection vulnerability in Cisco Nx-Os and Unified Computing System
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack.
local
low complexity
cisco CWE-77
6.3
2017-11-30 CVE-2017-12330 Command Injection vulnerability in Cisco Nx-Os 7.0(0)Hsk(0.357)/8.1(0)Bd(0.20)/8.1(1)
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack.
local
low complexity
cisco CWE-77
6.3
2017-11-30 CVE-2017-12329 Command Injection vulnerability in Cisco products
A vulnerability in the CLI of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack.
local
low complexity
cisco CWE-77
6.3
2017-11-22 CVE-2017-8197 Command Injection vulnerability in Huawei Fusionsphere V100R006C00Spc102(Nfv)
FusionSphere V100R006C00SPC102(NFV) has a command injection vulnerability.
network
low complexity
huawei CWE-77
7.2
2017-11-22 CVE-2017-8193 Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00Spc102(Nfv)
The FusionSphere OpenStack V100R006C00SPC102(NFV) has a command injection vulnerability.
low complexity
huawei CWE-77
8.0
2017-11-22 CVE-2017-8188 Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00Spc102(Nfv)
FusionSphere OpenStack V100R006C00SPC102(NFV)has a command injection vulnerability.
network
low complexity
huawei CWE-77
7.2
2017-11-22 CVE-2017-8135 Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00/V100R006C10
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports.
low complexity
huawei CWE-77
8.8
2017-11-22 CVE-2017-8134 Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00/V100R006C10
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports.
low complexity
huawei CWE-77
8.8
2017-11-22 CVE-2017-8133 Command Injection vulnerability in Huawei Neteco V600R008C00/V600R008C10
Huawei iManager NetEco with software V600R008C00 and V600R008C10 has a command injection vulnerability.
network
low complexity
huawei CWE-77
8.8
2017-11-22 CVE-2017-8132 Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00/V100R006C10
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports.
low complexity
huawei CWE-77
8.8