Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-07 | CVE-2023-33538 | Command Injection vulnerability in Tp-Link products TP-Link TL-WR940N V2/V4, TL-WR841N V8/V10, and TL-WR740N V1/V2 was discovered to contain a command injection vulnerability via the component /userRpm/WlanNetworkRpm . | 8.8 |
| 2023-06-07 | CVE-2022-25834 | Command Injection vulnerability in Percona Xtrabackup In Percona XtraBackup (PXB) through 2.2.24 and 3.x through 8.0.27-19, a crafted filename on the local file system could trigger unexpected command shell execution of arbitrary commands. | 7.8 |
| 2023-06-07 | CVE-2023-30400 | Command Injection vulnerability in Anyka Ak3918Ev300 Firmware 18 An issue was discovered in Anyka Microelectronics AK3918EV300 MCU v18. | 9.8 |
| 2023-06-07 | CVE-2023-33782 | Command Injection vulnerability in Dlink Dir-842V2 Firmware 1.0.3 D-Link DIR-842V2 v1.0.3 was discovered to contain a command injection vulnerability via the iperf3 diagnostics function. | 8.8 |
| 2023-06-06 | CVE-2023-34111 | Command Injection vulnerability in Tdengine Grafana The `Release PR Merged` workflow in the github repo taosdata/grafanaplugin is subject to a command injection vulnerability which allows for arbitrary code execution within the github action context due to the insecure usage of `${{ github.event.pull_request.title }}` in a bash command within the GitHub workflow. | 9.8 |
| 2023-06-06 | CVE-2023-31569 | Command Injection vulnerability in Totolink X5000R Firmware 9.1.0Cu.2350B20230313 TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection via the setWanCfg function. | 9.8 |
| 2023-06-06 | CVE-2023-33532 | Command Injection vulnerability in Netgear R6250 Firmware 1.0.4.48 There is a command injection vulnerability in the Netgear R6250 router with Firmware Version 1.0.4.48. | 9.8 |
| 2023-06-06 | CVE-2023-33533 | Command Injection vulnerability in Netgear products Netgear D6220 with Firmware Version 1.0.0.80, D8500 with Firmware Version 1.0.3.60, R6700 with Firmware Version 1.0.2.26, and R6900 with Firmware Version 1.0.2.26 are vulnerable to Command Injection. | 8.8 |
| 2023-06-06 | CVE-2023-33530 | Command Injection vulnerability in Tenda G103 Firmware 1.0.0.5 There is a command injection vulnerability in the Tenda G103 Gigabit GPON Terminal with firmware version V1.0.0.5. | 8.8 |
| 2023-06-05 | CVE-2023-0636 | Command Injection vulnerability in ABB products Improper Input Validation vulnerability in ABB Ltd. | 9.8 |