Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')

DATE CVE VULNERABILITY TITLE RISK
2022-02-04 CVE-2022-24144 Command Injection vulnerability in Tenda AX3 Firmware 16.03.12.10Cn
Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function WanParameterSetting.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24148 Command Injection vulnerability in Tenda AX3 Firmware 16.03.12.10Cn
Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function mDMZSetCfg.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24150 Command Injection vulnerability in Tenda AX3 Firmware 16.03.12.10Cn
Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function formSetSafeWanWebMan.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24165 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetQvlanList.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24167 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetDMZ.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24168 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetIpGroup.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24170 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetIpSecTunnel.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24171 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetPppoeServer.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8
2022-02-01 CVE-2021-42638 Command Injection vulnerability in Printerlogic web Stack 19.1.1.13
PrinterLogic Web Stack versions 19.1.1.13 SP9 and below do not sanitize user input resulting in pre-auth remote code execution.
network
high complexity
printerlogic CWE-77
8.1
8.1
2022-01-26 CVE-2021-32849 Command Injection vulnerability in Gerapy
Gerapy is a distributed crawler management framework.
network
low complexity
gerapy CWE-77
8.8
8.8