Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-06-06 | CVE-2023-33533 | Command Injection vulnerability in Netgear products Netgear D6220 with Firmware Version 1.0.0.80, D8500 with Firmware Version 1.0.3.60, R6700 with Firmware Version 1.0.2.26, and R6900 with Firmware Version 1.0.2.26 are vulnerable to Command Injection. | 8.8 |
2023-06-06 | CVE-2023-33530 | Command Injection vulnerability in Tenda G103 Firmware 1.0.0.5 There is a command injection vulnerability in the Tenda G103 Gigabit GPON Terminal with firmware version V1.0.0.5. | 8.8 |
2023-06-05 | CVE-2023-0636 | Command Injection vulnerability in ABB products Improper Input Validation vulnerability in ABB Ltd. | 9.8 |
2023-06-02 | CVE-2023-28704 | Command Injection vulnerability in Furbo DOG Camera Firmware 542 Furbo dog camera has insufficient filtering for special parameter of device log management function. | 8.8 |
2023-06-01 | CVE-2023-23952 | Command Injection vulnerability in Broadcom Advanced Secure Gateway and Content Analysis Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Command Injection vulnerability. | 9.8 |
2023-05-31 | CVE-2023-33722 | Command Injection vulnerability in Edimax Br-6288Acl Firmware 1.12 EDIMAX BR-6288ACL v1.12 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the pppUserName parameter. | 8.8 |
2023-05-31 | CVE-2023-33486 | Command Injection vulnerability in Totolink X5000R Firmware 9.1.0U.6118B20201102/9.1.0U.6369B20230113 TOTOLINK X5000R V9.1.0u.6118_B20201102 and V9.1.0u.6369_B20230113 contain a command insertion vulnerability in setOpModeCfg. | 9.8 |
2023-05-31 | CVE-2023-33487 | Command Injection vulnerability in Totolink X5000R Firmware 9.1.0U.6118B20201102/9.1.0U.6369B20230113 TOTOLINK X5000R V9.1.0u.6118_B20201102 and V9.1.0u.6369_B20230113 contains a command insertion vulnerability in setDiagnosisCfg.This vulnerability allows an attacker to execute arbitrary commands through the "ip" parameter. | 9.8 |
2023-05-30 | CVE-2023-34153 | Command Injection vulnerability in multiple products A vulnerability was found in ImageMagick. | 7.8 |
2023-05-29 | CVE-2022-24630 | Command Injection vulnerability in Audiocodes Device Manager Express An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. | 7.2 |