Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-07 | CVE-2023-30400 | Command Injection vulnerability in Anyka Ak3918Ev300 Firmware 18 An issue was discovered in Anyka Microelectronics AK3918EV300 MCU v18. | 9.8 |
| 2023-06-07 | CVE-2023-33782 | Command Injection vulnerability in Dlink Dir-842V2 Firmware 1.0.3 D-Link DIR-842V2 v1.0.3 was discovered to contain a command injection vulnerability via the iperf3 diagnostics function. | 8.8 |
| 2023-06-06 | CVE-2023-34111 | Command Injection vulnerability in Tdengine Grafana The `Release PR Merged` workflow in the github repo taosdata/grafanaplugin is subject to a command injection vulnerability which allows for arbitrary code execution within the github action context due to the insecure usage of `${{ github.event.pull_request.title }}` in a bash command within the GitHub workflow. | 9.8 |
| 2023-06-06 | CVE-2023-31569 | Command Injection vulnerability in Totolink X5000R Firmware 9.1.0Cu.2350B20230313 TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection via the setWanCfg function. | 9.8 |
| 2023-06-06 | CVE-2023-33532 | Command Injection vulnerability in Netgear R6250 Firmware 1.0.4.48 There is a command injection vulnerability in the Netgear R6250 router with Firmware Version 1.0.4.48. | 9.8 |
| 2023-06-06 | CVE-2023-33533 | Command Injection vulnerability in Netgear products Netgear D6220 with Firmware Version 1.0.0.80, D8500 with Firmware Version 1.0.3.60, R6700 with Firmware Version 1.0.2.26, and R6900 with Firmware Version 1.0.2.26 are vulnerable to Command Injection. | 8.8 |
| 2023-06-06 | CVE-2023-33530 | Command Injection vulnerability in Tenda G103 Firmware 1.0.0.5 There is a command injection vulnerability in the Tenda G103 Gigabit GPON Terminal with firmware version V1.0.0.5. | 8.8 |
| 2023-06-01 | CVE-2023-23952 | Command Injection vulnerability in Broadcom Advanced Secure Gateway and Content Analysis Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Command Injection vulnerability. | 9.8 |
| 2023-05-31 | CVE-2023-33722 | Command Injection vulnerability in Edimax Br-6288Acl Firmware 1.12 EDIMAX BR-6288ACL v1.12 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the pppUserName parameter. | 8.8 |
| 2023-05-31 | CVE-2023-33486 | Command Injection vulnerability in Totolink X5000R Firmware 9.1.0U.6118B20201102/9.1.0U.6369B20230113 TOTOLINK X5000R V9.1.0u.6118_B20201102 and V9.1.0u.6369_B20230113 contain a command insertion vulnerability in setOpModeCfg. | 9.8 |