Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-22 | CVE-2021-21881 | OS Command Injection vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0 An OS command injection vulnerability exists in the Web Manager Wireless Network Scanner functionality of Lantronix PremierWave 2050 8.9.0.0R4. | 9.9 |
| 2021-12-22 | CVE-2021-21882 | OS Command Injection vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0 An OS command injection vulnerability exists in the Web Manager FsUnmount functionality of Lantronix PremierWave 2050 8.9.0.0R4. | 8.8 |
| 2021-12-22 | CVE-2021-21883 | OS Command Injection vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0 An OS command injection vulnerability exists in the Web Manager Diagnostics: Ping functionality of Lantronix PremierWave 2050 8.9.0.0R4. | 9.9 |
| 2021-12-22 | CVE-2021-21884 | OS Command Injection vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0 An OS command injection vulnerability exists in the Web Manager SslGenerateCSR functionality of Lantronix PremierWave 2050 8.9.0.0R4. | 9.1 |
| 2021-12-22 | CVE-2021-21888 | OS Command Injection vulnerability in Lantronix Premierwave 2050 Firmware 8.9.0.0 An OS command injection vulnerability exists in the Web Manager SslGenerateCertificate functionality of Lantronix PremierWave 2050 8.9.0.0R4 (in QEMU). | 9.1 |
| 2021-12-20 | CVE-2020-19316 | OS Command Injection vulnerability in Laravel Framework OS Command injection vulnerability in function link in Filesystem.php in Laravel Framework before 5.8.17. | 8.8 |
| 2021-12-20 | CVE-2020-8105 | OS Command Injection vulnerability in Goabode Iota All-In-One Security KIT Firmware OS Command Injection vulnerability in the wirelessConnect handler of Abode iota All-In-One Security Kit allows an attacker to inject commands and gain root access. | 7.8 |
| 2021-12-16 | CVE-2021-42912 | OS Command Injection vulnerability in Fiberhome products FiberHome ONU GPON AN5506-04-F RP2617 is affected by an OS command injection vulnerability. | 8.8 |
| 2021-12-14 | CVE-2021-44235 | OS Command Injection vulnerability in SAP Netweaver Application Server Abap Two methods of a utility class in SAP NetWeaver AS ABAP - versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, allow an attacker with high privileges and has direct access to SAP System, to inject code when executing with a certain transaction class builder. | 6.7 |
| 2021-12-13 | CVE-2021-39065 | OS Command Injection vulnerability in IBM Spectrum Copy Data Management 2.2.0.0/2.2.13 IBM Spectrum Copy Data Management 2.2.13 and earlier could allow a remote attacker to execute arbitrary commands on the system, caused by improper validation of user-supplied input by the Spectrum Copy Data Management Admin Console login and uploadcertificate function . | 9.8 |