Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-08 | CVE-2021-21503 | OS Command Injection vulnerability in Dell EMC Powerscale Onefs 8.1.2/8.2.2/9.1.0 PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in a command. | 7.8 |
| 2021-03-08 | CVE-2020-27575 | OS Command Injection vulnerability in Maxum Rumpus 8.2.13/8.2.14 Maxum Rumpus 8.2.13 and 8.2.14 is affected by a command injection vulnerability. | 8.8 |
| 2021-03-05 | CVE-2021-26970 | OS Command Injection vulnerability in Arubanetworks Airwave A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 6.3 |
| 2021-03-05 | CVE-2021-26962 | OS Command Injection vulnerability in Arubanetworks Airwave A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 7.2 |
| 2021-03-02 | CVE-2021-27886 | OS Command Injection vulnerability in Docker Dashboard Project Docker Dashboard rakibtg Docker Dashboard before 2021-02-28 allows command injection in backend/utilities/terminal.js via shell metacharacters in the command parameter of an API request. | 9.8 |
| 2021-03-01 | CVE-2021-3342 | OS Command Injection vulnerability in Eprints 3.4.2 EPrints 3.4.2 allows remote attackers to read arbitrary files and possibly execute commands via crafted LaTeX input to a cgi/latex2png?latex= URI. | 9.8 |
| 2021-03-01 | CVE-2021-26704 | OS Command Injection vulnerability in Eprints 3.4.2 EPrints 3.4.2 allows remote attackers to execute arbitrary commands via crafted input to the verb parameter in a cgi/toolbox/toolbox URI. | 8.8 |
| 2021-03-01 | CVE-2021-26476 | OS Command Injection vulnerability in Eprints 3.4.2 EPrints 3.4.2 allows remote attackers to execute OS commands via crafted LaTeX input to a cgi/cal?year= URI. | 9.8 |
| 2021-02-27 | CVE-2019-25022 | OS Command Injection vulnerability in Scytl Secure Vote 2.1 An issue was discovered in Scytl sVote 2.1. | 9.8 |
| 2021-02-24 | CVE-2021-20658 | OS Command Injection vulnerability in Contec Sv-Cpt-Mc310 Firmware 6.0/6.00 SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an attacker to execute arbitrary OS commands with the web server privilege via unspecified vectors. | 9.8 |