Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-21 | CVE-2025-1536 | A vulnerability was found in Raisecom Multi-Service Intelligent Gateway up to 20250208. | 7.3 |
| 2025-02-20 | CVE-2025-25675 | Command Injection vulnerability in Tenda Ac10 Firmware 15.03.06.23 Tenda AC10 V1.0 V15.03.06.23 has a command injection vulnerablility located in the formexeCommand function. | 9.8 |
| 2025-02-16 | CVE-2025-1339 | Command Injection vulnerability in Totolink X18 Firmware 9.1.0Cu.2024B20220329 A vulnerability was found in TOTOLINK X18 9.1.0cu.2024_B20220329. | 8.8 |
| 2025-02-13 | CVE-2025-24861 | Command Injection vulnerability in Outbackpower Mojave Inverter Oghi8048A Firmware An attacker may inject commands via specially-crafted post requests. | 9.8 |
| 2025-02-12 | CVE-2025-1229 | A vulnerability classified as critical was found in olajowon Loggrove up to e428fac38cc480f011afcb1d8ce6c2bad378ddd6. | 6.3 |
| 2025-02-12 | CVE-2025-25743 | Command Injection vulnerability in Dlink Dir-853 Firmware 1.20B07 D-Link DIR-853 A1 FW1.20B07 was discovered to contain a command injection vulnerability in the SetVirtualServerSettings module. | 7.2 |
| 2025-02-12 | CVE-2024-12251 | Command Injection vulnerability in Telerik UI for Winui In Progress® Telerik® UI for WinUI versions prior to 2025 Q1 (3.0.0), a command injection attack is possible through improper neutralization of hyperlink elements. | 7.8 |
| 2025-01-29 | CVE-2025-0798 | A vulnerability was found in MicroWorld eScan Antivirus 7.0.32 on Linux. | 8.1 |
| 2025-01-27 | CVE-2025-24150 | Command Injection vulnerability in Apple products A privacy issue was addressed with improved handling of files. | 8.8 |
| 2025-01-16 | CVE-2024-57583 | Command Injection vulnerability in Tenda Ac18 Firmware 15.03.05.19 Tenda AC18 V15.03.05.19 was discovered to contain a command injection vulnerability via the usbName parameter in the formSetSambaConf function. | 9.8 |