Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-02-03 | CVE-2023-24153 | Command Injection vulnerability in Totolink T8 Firmware V4.1.5Cu A command injection vulnerability in the version parameter in the function recvSlaveCloudCheckStatus of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet. | 9.8 |
2023-02-03 | CVE-2023-24154 | Command Injection vulnerability in Totolink T8 Firmware V4.1.5Cu TOTOLINK T8 V4.1.5cu was discovered to contain a command injection vulnerability via the slaveIpList parameter in the function setUpgradeFW. | 9.8 |
2023-02-03 | CVE-2023-24156 | Command Injection vulnerability in Totolink T8 Firmware V4.1.5Cu A command injection vulnerability in the ip parameter in the function recvSlaveUpgstatus of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet. | 9.8 |
2023-02-03 | CVE-2023-24157 | Command Injection vulnerability in Totolink T8 Firmware V4.1.5Cu A command injection vulnerability in the serverIp parameter in the function updateWifiInfo of TOTOLINK T8 V4.1.5cu allows attackers to execute arbitrary commands via a crafted MQTT packet. | 9.8 |
2023-02-02 | CVE-2023-0646 | Command Injection vulnerability in Dst-Admin Project Dst-Admin 1.5.0 A vulnerability classified as critical was found in dst-admin 1.5.0. | 7.5 |
2023-02-02 | CVE-2023-0647 | Command Injection vulnerability in Dst-Admin Project Dst-Admin 1.5.0 A vulnerability, which was classified as critical, has been found in dst-admin 1.5.0. | 7.5 |
2023-02-02 | CVE-2023-0648 | Command Injection vulnerability in Dst-Admin Project Dst-Admin 1.5.0 A vulnerability, which was classified as critical, was found in dst-admin 1.5.0. | 7.5 |
2023-02-02 | CVE-2023-0649 | Command Injection vulnerability in Dst-Admin Project Dst-Admin 1.5.0 A vulnerability has been found in dst-admin 1.5.0 and classified as critical. | 7.5 |
2023-02-02 | CVE-2023-0638 | Command Injection vulnerability in Trendnet Tew-811Dru Firmware 1.0.10.0 A vulnerability has been found in TRENDnet TEW-811DRU 1.0.10.0 and classified as critical. | 9.8 |
2023-02-02 | CVE-2023-0640 | Command Injection vulnerability in Trendnet Tew-652Brp Firmware 3.04B01 A vulnerability was found in TRENDnet TEW-652BRP 3.04b01. | 9.8 |