Vulnerabilities > Improper Neutralization of Special Elements used in a Command ('Command Injection')

DATE CVE VULNERABILITY TITLE RISK
2021-04-22 CVE-2021-0252 Command Injection vulnerability in Juniper Junos
NFX Series devices using Juniper Networks Junos OS are susceptible to a local code execution vulnerability thereby allowing an attacker to elevate their privileges via the Junos Device Management Daemon (JDMD) process.
local
low complexity
juniper CWE-77
4.6
4.6
2021-04-19 CVE-2021-20527 Command Injection vulnerability in IBM Resilient 26.0/26.1/26.2
IBM Resilient SOAR V38.0 could allow a privileged user to create create malicious scripts that could be executed as another user.
network
low complexity
ibm CWE-77
6.5
6.5
2021-04-19 CVE-2021-20991 Command Injection vulnerability in Fibaro Home Center 2 Firmware and Home Center Lite Firmware
In Fibaro Home Center 2 and Lite devices with firmware version 4.540 and older an authenticated user can run commands as root user using a command injection vulnerability.
network
low complexity
fibaro CWE-77
critical
 9.0
9.0
2021-04-18 CVE-2021-23381 Command Injection vulnerability in Killing Project Killing
This affects all versions of package killing.
network
low complexity
killing-project CWE-77
7.5
7.5
2021-04-18 CVE-2021-23380 Command Injection vulnerability in Roar-Pidusage Project Roar-Pidusage
This affects all versions of package roar-pidusage.
network
low complexity
roar-pidusage-project CWE-77
7.5
7.5
2021-04-18 CVE-2021-23379 Command Injection vulnerability in Portkiller Project Portkiller
This affects all versions of package portkiller.
network
low complexity
portkiller-project CWE-77
7.5
7.5
2021-04-18 CVE-2021-23378 Command Injection vulnerability in Picotts Project Picotts
This affects all versions of package picotts.
network
low complexity
picotts-project CWE-77
7.5
7.5
2021-04-18 CVE-2021-23377 Command Injection vulnerability in Onion-Oled-Js Project Onion-Oled-Js
This affects all versions of package onion-oled-js.
network
low complexity
onion-oled-js-project CWE-77
7.5
7.5
2021-04-18 CVE-2021-23376 Command Injection vulnerability in Ffmpegdotjs Project Ffmpegdotjs
This affects all versions of package ffmpegdotjs.
network
low complexity
ffmpegdotjs-project CWE-77
7.5
7.5
2021-04-18 CVE-2021-23375 Command Injection vulnerability in Psnode Project Psnode
This affects all versions of package psnode.
network
low complexity
psnode-project CWE-77
7.5
7.5