Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-11 | CVE-2009-5157 | Command Injection vulnerability in Linksys Wag54G2 Firmware 1.00.10 On Linksys WAG54G2 1.00.10 devices, there is authenticated command injection via shell metacharacters in the setup.cgi c4_ping_ipaddr variable. | 8.8 |
| 2019-06-11 | CVE-2009-5156 | Command Injection vulnerability in Veracomp Asmax Ar-804Gu Firmware 66.34.1 An issue was discovered on ASMAX AR-804gu 66.34.1 devices. | 9.8 |
| 2019-06-10 | CVE-2019-12786 | Command Injection vulnerability in Dlink Dir-818Lw Firmware 2.05.B03/2.06B01 An issue was discovered on D-Link DIR-818LW devices from 2.05.B03 to 2.06B01 BETA. | 8.8 |
| 2019-06-07 | CVE-2018-19451 | Command Injection vulnerability in Foxitsoftware Foxit PDF SDK Activex 5.4.0.1031/5.5.0 A command injection can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) Professional 5.4.0.1031 when using the Open File action on a Field. | 7.8 |
| 2019-06-07 | CVE-2018-20523 | Command Injection vulnerability in MI products Xiaomi Stock Browser 10.2.4.g on Xiaomi Redmi Note 5 Pro devices and other Redmi Android phones allows content provider injection. | 5.3 |
| 2019-06-05 | CVE-2019-5390 | Command Injection vulnerability in HP Intelligent Management Center A remote command injection vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09. | 9.8 |
| 2019-06-03 | CVE-2019-6739 | Command Injection vulnerability in Malwarebytes Antimalware 3.6.1.2711 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Malwarebytes Antimalware 3.6.1.2711. | 8.8 |
| 2019-06-03 | CVE-2019-12591 | Command Injection vulnerability in Netgear Insight NETGEAR Insight Cloud with firmware before Insight 5.6 allows remote authenticated users to achieve command injection. | 7.6 |
| 2019-05-23 | CVE-2019-10854 | Command Injection vulnerability in Computrols Building Automation Software Computrols CBAS 18.0.0 allows Authenticated Command Injection. | 8.8 |
| 2019-05-22 | CVE-2018-7826 | Command Injection vulnerability in Schneider-Electric products A Command Injection vulnerability exists in the web-based GUI of the 1st Gen Pelco Sarix Enhanced Camera that could allow a remote attacker to execute arbitrary commands. | 8.8 |