Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

DATE CVE VULNERABILITY TITLE RISK
2021-10-31 CVE-2020-26707 OS Command Injection vulnerability in Aaptjs Project Aaptjs 1.3.1
An issue was discovered in the add function in Shenzhim AAPTJS 1.3.1 which allows attackers to execute arbitrary code via the filePath parameter.
network
low complexity
aaptjs-project CWE-78
critical
 9.8
9.8
2021-10-31 CVE-2020-36376 OS Command Injection vulnerability in Aaptjs Project Aaptjs 1.3.1
An issue was discovered in the list function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.
network
low complexity
aaptjs-project CWE-78
critical
 9.8
9.8
2021-10-31 CVE-2020-36377 OS Command Injection vulnerability in Aaptjs Project Aaptjs 1.3.1
An issue was discovered in the dump function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.
network
low complexity
aaptjs-project CWE-78
critical
 9.8
9.8
2021-10-31 CVE-2020-36378 OS Command Injection vulnerability in Aaptjs Project Aaptjs 1.3.1
An issue was discovered in the packageCmd function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.
network
low complexity
aaptjs-project CWE-78
critical
 9.8
9.8
2021-10-31 CVE-2020-36379 OS Command Injection vulnerability in Aaptjs Project Aaptjs 1.3.1
An issue was discovered in the remove function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.
network
low complexity
aaptjs-project CWE-78
critical
 9.8
9.8
2021-10-31 CVE-2020-36380 OS Command Injection vulnerability in Aaptjs Project Aaptjs 1.3.1
An issue was discovered in the crunch function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.
network
low complexity
aaptjs-project CWE-78
critical
 9.8
9.8
2021-10-31 CVE-2020-36381 OS Command Injection vulnerability in Aaptjs Project Aaptjs 1.3.1
An issue was discovered in the singleCrunch function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.
network
low complexity
aaptjs-project CWE-78
critical
 9.8
9.8
2021-10-27 CVE-2021-34755 OS Command Injection vulnerability in Cisco products
Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges.
local
low complexity
cisco CWE-78
7.8
7.8
2021-10-27 CVE-2021-34756 OS Command Injection vulnerability in Cisco products
Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges.
local
low complexity
cisco CWE-78
7.8
7.8
2021-10-26 CVE-2011-2195 OS Command Injection vulnerability in Websvn 2.3.2
A flaw was found in WebSVN 2.3.2.
network
low complexity
websvn CWE-78
critical
 9.8
9.8