Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

DATE CVE VULNERABILITY TITLE RISK
2019-02-26 CVE-2019-9194 OS Command Injection vulnerability in Std42 Elfinder
elFinder before 2.1.48 has a command injection vulnerability in the PHP connector.
network
low complexity
std42 CWE-78
critical
 9.8
9.8
2019-02-21 CVE-2018-20122 OS Command Injection vulnerability in Fastweb Fastgate Firmware 0.00.47/1.0.1B
The web interface on FASTGate Fastweb devices with firmware through 0.00.47_FW_200_Askey 2017-05-17 (software through 1.0.1b) exposed a CGI binary that is vulnerable to a command injection vulnerability that can be exploited to achieve remote code execution with root privileges.
network
low complexity
fastweb CWE-78
critical
 9.8
9.8
2019-02-20 CVE-2018-15380 OS Command Injection vulnerability in Cisco Hyperflex HX Data Platform 3.0(1A)/3.5(1A)
A vulnerability in the cluster service manager of Cisco HyperFlex Software could allow an unauthenticated, adjacent attacker to execute commands as the root user.
low complexity
cisco CWE-78
8.8
8.8
2019-02-18 CVE-2019-8427 OS Command Injection vulnerability in Zoneminder
daemonControl in includes/functions.php in ZoneMinder before 1.32.3 allows command injection via shell metacharacters.
network
low complexity
zoneminder CWE-78
critical
 9.8
9.8
2019-02-13 CVE-2019-8319 OS Command Injection vulnerability in Dlink Dir-878 Firmware 1.12A1
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1.
network
low complexity
dlink CWE-78
8.8
8.8
2019-02-13 CVE-2019-8318 OS Command Injection vulnerability in Dlink Dir-878 Firmware 1.12A1
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1.
network
low complexity
dlink CWE-78
8.8
8.8
2019-02-13 CVE-2019-8317 OS Command Injection vulnerability in Dlink Dir-878 Firmware 1.12A1
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1.
network
low complexity
dlink CWE-78
8.8
8.8
2019-02-13 CVE-2019-8316 OS Command Injection vulnerability in Dlink Dir-878 Firmware 1.12A1
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1.
network
low complexity
dlink CWE-78
8.8
8.8
2019-02-13 CVE-2019-8315 OS Command Injection vulnerability in Dlink Dir-878 Firmware 1.12A1
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1.
network
low complexity
dlink CWE-78
8.8
8.8
2019-02-13 CVE-2019-8314 OS Command Injection vulnerability in Dlink Dir-878 Firmware 1.12A1
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1.
network
low complexity
dlink CWE-78
8.8
8.8