Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-22 | CVE-2021-29143 | OS Command Injection vulnerability in Arubanetworks Aos-Cx Firmware A remote execution of arbitrary commands vulnerability was discovered in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch Series version(s): Aruba AOS-CX firmware: 10.04.xxxx - versions prior to 10.04.3070, 10.05.xxxx - versions prior to 10.05.0070, 10.06.xxxx - versions prior to 10.06.0110, 10.07.xxxx - versions prior to 10.07.0001. | 7.2 |
| 2021-07-21 | CVE-2020-21935 | OS Command Injection vulnerability in Motorola CX2 Firmware 1.0.2 A command injection vulnerability in HNAP1/GetNetworkTomographySettings of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to execute arbitrary code. | 9.8 |
| 2021-07-21 | CVE-2020-21937 | OS Command Injection vulnerability in Motorola CX2 Firmware 1.0.2 An command injection vulnerability in HNAP1/SetWLanApcliSettings of Motorola CX2 router CX 1.0.2 Build 20190508 Rel.97360n allows attackers to execute arbitrary system commands. | 9.8 |
| 2021-07-20 | CVE-2021-32751 | OS Command Injection vulnerability in Gradle Gradle is a build tool with a focus on build automation. | 7.5 |
| 2021-07-20 | CVE-2020-25206 | OS Command Injection vulnerability in Mimosa B5 Firmware, B5C Firmware and C5C Firmware The web console for Mimosa B5, B5c, and C5x firmware through 2.8.0.2 allows authenticated command injection in the Throughput, WANStats, PhyStats, and QosStats API classes. | 7.2 |
| 2021-07-20 | CVE-2021-22125 | OS Command Injection vulnerability in Fortinet Fortisandbox An instance of improper neutralization of special elements in the sniffer module of FortiSandbox before 3.2.2 may allow an authenticated administrator to execute commands on the underlying system's shell via altering the content of its configuration file. | 7.2 |
| 2021-07-19 | CVE-2020-29499 | OS Command Injection vulnerability in Dell EMC Powerstore Dell EMC PowerStore versions prior to 1.0.3.0.5.006 contain an OS Command Injection vulnerability in PowerStore X environment . | 6.7 |
| 2021-07-19 | CVE-2020-5322 | OS Command Injection vulnerability in Dell EMC Openmanage Enterprise-Modular Dell EMC OpenManage Enterprise-Modular (OME-M) versions prior to 1.10.00 contain a command injection vulnerability. | 9.1 |
| 2021-07-16 | CVE-2021-21819 | OS Command Injection vulnerability in Dlink Dir-3040 Firmware 1.13B03 A code execution vulnerability exists in the Libcli Test Environment functionality of D-LINK DIR-3040 1.13B03. | 7.2 |
| 2021-07-12 | CVE-2020-19907 | OS Command Injection vulnerability in Mitre Caldera A command injection vulnerability in the sandcat plugin of Caldera 2.3.1 and earlier allows authenticated attackers to execute any command or service. | 8.8 |