Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-04 | CVE-2021-45986 | OS Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetUSBShareInfo. | 9.8 |
| 2022-02-04 | CVE-2021-45987 | OS Command Injection vulnerability in Tendacn G1 Firmware and G3 Firmware Tenda routers G1 and G3 v15.11.0.17(9502)_CN were discovered to contain a command injection vulnerability in the function formSetNetCheckTools. | 9.8 |
| 2022-02-02 | CVE-2021-41018 | OS Command Injection vulnerability in Fortinet Fortiweb A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests. | 8.8 |
| 2022-02-02 | CVE-2021-41016 | OS Command Injection vulnerability in Fortinet Fortiextender Firmware A improper neutralization of special elements used in a command ('command injection') in Fortinet FortiExtender version 7.0.1 and below, 4.2.3 and below, 4.1.7 and below allows an authenticated attacker to execute privileged shell commands via CLI commands including special characters | 8.8 |
| 2022-02-02 | CVE-2021-43073 | OS Command Injection vulnerability in Fortinet Fortiweb A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests. | 8.8 |
| 2022-01-28 | CVE-2021-40407 | OS Command Injection vulnerability in Reolink Rlc-410W Firmware 3.0.0.13620121102 An OS command injection vulnerability exists in the device network settings functionality of reolink RLC-410W v3.0.0.136_20121102. | 9.8 |
| 2022-01-28 | CVE-2021-40408 | OS Command Injection vulnerability in Reolink Rlc-410W Firmware 3.0.0.13620121102 An OS command injection vulnerability exists in the device network settings functionality of reolink RLC-410W v3.0.0.136_20121102. | 9.8 |
| 2022-01-28 | CVE-2021-40409 | OS Command Injection vulnerability in Reolink Rlc-410W Firmware 3.0.0.13620121102 An OS command injection vulnerability exists in the device network settings functionality of reolink RLC-410W v3.0.0.136_20121102. | 9.8 |
| 2022-01-28 | CVE-2021-40410 | OS Command Injection vulnerability in Reolink Rlc-410W Firmware 3.0.0.13620121102 An OS command injection vulnerability exists in the device network settings functionality of reolink RLC-410W v3.0.0.136_20121102. | 7.2 |
| 2022-01-28 | CVE-2021-40411 | OS Command Injection vulnerability in Reolink Rlc-410W Firmware 3.0.0.13620121102 An OS command injection vulnerability exists in the device network settings functionality of reolink RLC-410W v3.0.0.136_20121102. | 7.2 |