Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-24 | CVE-2022-25077 | OS Command Injection vulnerability in Totolink A3100R Firmware 4.1.2Cu.5050B20200504 TOTOLink A3100R V4.1.2cu.5050_B20200504 was discovered to contain a command injection vulnerability in the "Main" function. | 9.8 |
| 2022-02-24 | CVE-2022-25078 | OS Command Injection vulnerability in Totolink A3600R Firmware 4.1.2Cu.5182B20201102 TOTOLink A3600R V4.1.2cu.5182_B20201102 was discovered to contain a command injection vulnerability in the "Main" function. | 9.8 |
| 2022-02-24 | CVE-2022-25079 | OS Command Injection vulnerability in Totolink A810R Firmware 4.1.2Cu.5182B20201026 TOTOLink A810R V4.1.2cu.5182_B20201026 was discovered to contain a command injection vulnerability in the "Main" function. | 9.8 |
| 2022-02-24 | CVE-2022-25080 | OS Command Injection vulnerability in Totolink A830R Firmware 5.9C.4729B20191112 TOTOLink A830R V5.9c.4729_B20191112 was discovered to contain a command injection vulnerability in the "Main" function. | 9.8 |
| 2022-02-24 | CVE-2022-25081 | OS Command Injection vulnerability in Totolink T10 V2 Firmware 5.9C.5061B20200511 TOTOLink T10 V5.9c.5061_B20200511 was discovered to contain a command injection vulnerability in the "Main" function. | 9.8 |
| 2022-02-24 | CVE-2022-25082 | OS Command Injection vulnerability in Totolink A950Rg Firmware 4.1.2Cu.5204B20210112/5.9C.4050B20190424 TOTOLink A950RG V5.9c.4050_B20190424 and V4.1.2cu.5204_B20210112 were discovered to contain a command injection vulnerability in the "Main" function. | 9.8 |
| 2022-02-24 | CVE-2022-25083 | OS Command Injection vulnerability in Totolink A860R Firmware 4.1.2Cu.5182B20201027 TOTOLink A860R V4.1.2cu.5182_B20201027 was discovered to contain a command injection vulnerability in the "Main" function. | 9.8 |
| 2022-02-24 | CVE-2022-25084 | OS Command Injection vulnerability in Totolink T6 Firmware 5.9C.4085B20190428 TOTOLink T6 V5.9c.4085_B20190428 was discovered to contain a command injection vulnerability in the "Main" function. | 9.8 |
| 2022-02-23 | CVE-2022-20650 | OS Command Injection vulnerability in Cisco Nx-Os 10.2(1.72)/7.3(8)N1(0.4) A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. | 8.8 |
| 2022-02-18 | CVE-2022-21143 | OS Command Injection vulnerability in Airspan products MMP: All versions prior to v1.0.3, PTP C-series: Device versions prior to v2.8.6.1, and PTMP C-series and A5x: Device versions prior to v2.5.4.1 does not properly sanitize user input on several locations, which may allow an attacker to inject arbitrary commands. | 9.8 |