Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')

DATE CVE VULNERABILITY TITLE RISK
2022-02-04 CVE-2021-46453 Command Injection vulnerability in Dlink Dir-823 PRO Firmware 1.0.2
D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetStaticRouteSettings.
network
low complexity
dlink CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2021-46454 Command Injection vulnerability in Dlink Dir-823 PRO Firmware 1.0.2
D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetWLanApcliSettings.
network
low complexity
dlink CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2021-46455 Command Injection vulnerability in Dlink Dir-823 PRO Firmware 1.0.2
D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetStationSettings.
network
low complexity
dlink CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2021-46456 Command Injection vulnerability in Dlink Dir-823 PRO Firmware 1.0.2
D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetWLanACLSettings.
network
low complexity
dlink CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2021-46457 Command Injection vulnerability in Dlink Dir-823 PRO Firmware 1.0.2
D-Link device D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function ChgSambaUserSettings.
network
low complexity
dlink CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24144 Command Injection vulnerability in Tenda AX3 Firmware 16.03.12.10Cn
Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function WanParameterSetting.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24148 Command Injection vulnerability in Tenda AX3 Firmware 16.03.12.10Cn
Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function mDMZSetCfg.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24150 Command Injection vulnerability in Tenda AX3 Firmware 16.03.12.10Cn
Tenda AX3 v16.03.12.10_CN was discovered to contain a command injection vulnerability in the function formSetSafeWanWebMan.
network
low complexity
tenda CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24165 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetQvlanList.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8
2022-02-04 CVE-2022-24167 Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware
Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetDMZ.
network
low complexity
tendacn CWE-77
critical
 9.8
9.8