Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')

DATE CVE VULNERABILITY TITLE RISK
2025-02-24 CVE-2025-1616 Command Injection vulnerability in Fiberhome An5506-01A Firmware Rp2511
A vulnerability, which was classified as critical, has been found in FiberHome AN5506-01A ONU GPON RP2511.
network
low complexity
fiberhome CWE-77
critical
 9.8
9.8
2025-02-24 CVE-2025-1609 A vulnerability has been found in LB-LINK AC1900 Router 1.0.2 and classified as critical.
network
low complexity
CWE-77
6.3
6.3
2025-02-24 CVE-2025-1610 A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical.
network
low complexity
CWE-77
6.3
6.3
2025-02-24 CVE-2025-1608 A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2.
network
low complexity
CWE-77
6.3
6.3
2025-02-21 CVE-2025-1536 A vulnerability was found in Raisecom Multi-Service Intelligent Gateway up to 20250208.
network
low complexity
CWE-77
7.3
7.3
2025-02-20 CVE-2025-25675 Command Injection vulnerability in Tenda Ac10 Firmware 15.03.06.23
Tenda AC10 V1.0 V15.03.06.23 has a command injection vulnerablility located in the formexeCommand function.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2025-02-16 CVE-2025-1339 Command Injection vulnerability in Totolink X18 Firmware 9.1.0Cu.2024B20220329
A vulnerability was found in TOTOLINK X18 9.1.0cu.2024_B20220329.
network
low complexity
totolink CWE-77
8.8
8.8
2025-02-13 CVE-2025-24861 Command Injection vulnerability in Outbackpower Mojave Inverter Oghi8048A Firmware
An attacker may inject commands via specially-crafted post requests.
network
low complexity
outbackpower CWE-77
critical
 9.8
9.8
2025-02-12 CVE-2025-1229 A vulnerability classified as critical was found in olajowon Loggrove up to e428fac38cc480f011afcb1d8ce6c2bad378ddd6.
network
low complexity
CWE-77
6.3
6.3
2025-02-12 CVE-2025-25743 Command Injection vulnerability in Dlink Dir-853 Firmware 1.20B07
D-Link DIR-853 A1 FW1.20B07 was discovered to contain a command injection vulnerability in the SetVirtualServerSettings module.
network
low complexity
dlink CWE-77
7.2
7.2