Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-24 | CVE-2024-2854 | OS Command Injection vulnerability in Tenda Ac18 Firmware 15.03.05.05 A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. | 9.8 |
| 2024-03-24 | CVE-2024-2853 | OS Command Injection vulnerability in Tenda Ac10U Firmware 15.03.06.48/15.03.06.49 A vulnerability was found in Tenda AC10U 15.03.06.48/15.03.06.49. | 9.8 |
| 2024-03-24 | CVE-2024-2851 | OS Command Injection vulnerability in Tenda Ac15 Firmware 15.03.05.18/15.03.20Multi A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20_multi. | 9.8 |
| 2024-03-22 | CVE-2024-2812 | OS Command Injection vulnerability in Tenda Ac15 Firmware 15.03.05.18/15.03.05.20Multi A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20_multi. | 8.8 |
| 2024-02-21 | CVE-2024-1212 | OS Command Injection vulnerability in Progress Loadmaster Unauthenticated remote attackers can access the system through the LoadMaster management interface, enabling arbitrary system command execution. | 9.8 |
| 2024-02-15 | CVE-2024-20720 | OS Command Injection vulnerability in Adobe Commerce 2.4.4/2.4.5/2.4.6 Adobe Commerce versions 2.4.6-p3, 2.4.5-p5, 2.4.4-p6 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could lead in arbitrary code execution by an attacker. | 9.1 |
| 2024-02-15 | CVE-2024-26260 | The functionality for synchronization in HGiga OAKlouds' certain moudules has an OS Command Injection vulnerability, allowing remote attackers to inject system commands within specific request parameters. | 9.8 |
| 2024-02-14 | CVE-2024-1367 | OS Command Injection vulnerability in Tenable Security Center A command injection vulnerability exists where an authenticated, remote attacker with administrator privileges on the Security Center application could modify Logging parameters, which could lead to the execution of arbitrary code on the Security Center host. | 7.2 |
| 2024-02-13 | CVE-2024-23812 | OS Command Injection vulnerability in Siemens Sinec NMS 1.0/1.0.3/2.0 A vulnerability has been identified in SINEC NMS (All versions < V2.0 SP1). | 8.8 |
| 2024-02-13 | CVE-2024-22445 | OS Command Injection vulnerability in Dell Powerprotect Data Manager Dell PowerProtect Data Manager, version 19.15 and prior versions, contain an OS command injection vulnerability. | 7.2 |