Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-02-13 | CVE-2019-8313 | OS Command Injection vulnerability in Dlink Dir-878 Firmware 1.12A1 An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. | 8.8 |
| 2019-02-13 | CVE-2019-8312 | OS Command Injection vulnerability in Dlink Dir-878 Firmware 1.12A1 An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. | 8.8 |
| 2019-02-11 | CVE-2019-5736 | OS Command Injection vulnerability in multiple products runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new container with an attacker-controlled image, or (2) an existing container, to which the attacker previously had write access, that can be attached with docker exec. local low complexity docker linuxfoundation redhat google linuxcontainers hp netapp apache opensuse d2iq fedoraproject canonical microfocus CWE-78 | 8.6 |
| 2019-02-08 | CVE-2019-7632 | OS Command Injection vulnerability in Lifesize products LifeSize Team, Room, Passport, and Networker 220 devices allow Authenticated Remote OS Command Injection, as demonstrated by shell metacharacters in the support/mtusize.php mtu_size parameter. | 8.8 |
| 2019-02-07 | CVE-2019-3704 | OS Command Injection vulnerability in Dell EMC Vnx2 Firmware VNX Control Station in Dell EMC VNX2 OE for File versions prior to 8.1.9.236 contains OS command injection vulnerability. | 7.8 |
| 2019-02-01 | CVE-2019-7301 | OS Command Injection vulnerability in Zevenet ZEN Load Balancer 3.10.1 Zen Load Balancer 3.10.1 allows remote authenticated admin users to execute arbitrary commands as root via shell metacharacters in the index.cgi?action=View_Cert certname parameter. | 7.2 |
| 2019-02-01 | CVE-2019-7298 | OS Command Injection vulnerability in Dlink Dir-823G Firmware An issue was discovered on D-Link DIR-823G devices with firmware through 1.02B03. | 8.1 |
| 2019-01-31 | CVE-2019-7297 | OS Command Injection vulnerability in D-Link Dir-823G Firmware An issue was discovered on D-Link DIR-823G devices with firmware through 1.02B03. | 9.8 |
| 2019-01-30 | CVE-2019-3913 | OS Command Injection vulnerability in Labkey Server Command manipulation in LabKey Server Community Edition before 18.3.0-61806.763 allows an authenticated remote attacker to unmount any drive on the system leading to denial of service. | 4.9 |
| 2019-01-28 | CVE-2018-19015 | OS Command Injection vulnerability in Omron Cx-Supervisor An attacker could inject commands to launch programs and create, write, and read files on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file. | 7.3 |