| 2025-05-07 | CVE-2025-20194 | A vulnerability in the web-based management interface of Cisco IOS XE Software could allow an authenticated, low-privileged, remote attacker to perform an injection attack against an affected device. This vulnerability is due to insufficient input validation. | 5.4 |
| 2025-05-07 | CVE-2025-20213 | A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly Cisco SD-WAN vManage, could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an affected device. | 5.5 |
| 2025-05-02 | CVE-2025-2605 | OS Command Injection vulnerability in Honeywell Mb-Secure Firmware and Mb-Secure PRO Firmware
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in Honeywell MB-Secure allows Privilege Abuse. | 8.8 |
| 2025-04-28 | CVE-2022-41871 | OS Command Injection vulnerability in Seppmail 11.1.10
SEPPmail through 12.1.17 allows command injection within the Admin Portal. | 8.8 |
| 2025-04-24 | CVE-2025-1976 | OS Command Injection vulnerability in Broadcom Fabric Operating System
Brocade Fabric OS versions starting with 9.1.0 have root access removed, however, a local user with admin privilege can potentially execute arbitrary code with full root privileges on Fabric OS versions 9.1.0 through 9.1.1d6. | 6.7 |
| 2025-04-20 | CVE-2025-43920 | OS Command Injection vulnerability in GNU Mailman
GNU Mailman 2.1.39, as bundled in cPanel (and WHM), in certain external archiver configurations, allows unauthenticated attackers to execute arbitrary OS commands via shell metacharacters in an email Subject line. | 8.1 |
| 2025-04-16 | CVE-2025-3729 | OS Command Injection vulnerability in Senior-Walter Web-Based Pharmacy Product Management System 1.0
A vulnerability, which was classified as critical, has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. | 9.8 |
| 2025-04-08 | CVE-2024-41788 | A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). network low complexity CWE-78 critical | 9.1 |
| 2025-04-08 | CVE-2024-41789 | A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). network low complexity CWE-78 critical | 9.1 |
| 2025-04-08 | CVE-2024-41790 | A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). network low complexity CWE-78 critical | 9.1 |