Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-03-21 | CVE-2018-3969 | OS Command Injection vulnerability in Getcujo Smart Firewall 7003 An exploitable vulnerability exists in the verified boot protection of the CUJO Smart Firewall. | 7.8 |
2019-03-21 | CVE-2019-7385 | OS Command Injection vulnerability in Raisecom products An authenticated shell command injection issue has been discovered in Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with the firmware version ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 or below, The values of the newpass and confpass parameters in /bin/WebMGR are used in a system call in the firmware. | 7.8 |
2019-03-21 | CVE-2019-7384 | OS Command Injection vulnerability in Raisecom products An authenticated shell command injection issue has been discovered in Raisecom ISCOM HT803G-U, HT803G-W, HT803G-1GE, and HT803G GPON products with the firmware version ISCOMHT803G-U_2.0.0_140521_R4.1.47.002 or below. | 7.8 |
2019-03-21 | CVE-2019-7383 | OS Command Injection vulnerability in Systrome products An issue was discovered on Systrome Cumilon ISG-600C, ISG-600H, and ISG-800W devices with firmware V1.1-R2.1_TRUNK-20181105.bin. | 7.8 |
2019-03-21 | CVE-2019-5414 | OS Command Injection vulnerability in Kill-Port Project Kill-Port If an attacker can control the port, which in itself is a very sensitive value, they can inject arbitrary OS commands due to the usage of the exec function in a third-party module kill-port < 1.3.2. | 9.3 |
2019-03-21 | CVE-2018-20323 | OS Command Injection vulnerability in Mailcleaner 2018.08 www/soap/application/MCSoap/Logs.php in MailCleaner Community Edition 2018.08 allows remote attackers to execute arbitrary OS commands. | 9.0 |
2019-03-21 | CVE-2018-20218 | OS Command Injection vulnerability in Teracue products An issue was discovered on Teracue ENC-400 devices with firmware 2.56 and below. | 10.0 |
2019-03-11 | CVE-2018-1998 | OS Command Injection vulnerability in IBM Websphere MQ IBM WebSphere MQ 8.0.0.0 through 9.1.1 could allow a local user to inject code that could be executed with root privileges. | 7.2 |
2019-03-11 | CVE-2019-1612 | OS Command Injection vulnerability in Cisco Nx-Os A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. | 7.2 |
2019-03-07 | CVE-2019-9121 | OS Command Injection vulnerability in Motorola C1 Firmware and M2 Firmware An issue was discovered on Motorola C1 and M2 devices with firmware 1.01 and 1.07 respectively. | 10.0 |