Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-02-07 | CVE-2019-3704 | OS Command Injection vulnerability in Dell EMC Vnx2 Firmware VNX Control Station in Dell EMC VNX2 OE for File versions prior to 8.1.9.236 contains OS command injection vulnerability. | 7.8 |
| 2019-02-01 | CVE-2019-7301 | OS Command Injection vulnerability in Zevenet ZEN Load Balancer 3.10.1 Zen Load Balancer 3.10.1 allows remote authenticated admin users to execute arbitrary commands as root via shell metacharacters in the index.cgi?action=View_Cert certname parameter. | 7.2 |
| 2019-02-01 | CVE-2019-7298 | OS Command Injection vulnerability in Dlink Dir-823G Firmware An issue was discovered on D-Link DIR-823G devices with firmware through 1.02B03. | 8.1 |
| 2019-01-31 | CVE-2019-7297 | OS Command Injection vulnerability in D-Link Dir-823G Firmware An issue was discovered on D-Link DIR-823G devices with firmware through 1.02B03. | 9.8 |
| 2019-01-30 | CVE-2019-3913 | OS Command Injection vulnerability in Labkey Server Command manipulation in LabKey Server Community Edition before 18.3.0-61806.763 allows an authenticated remote attacker to unmount any drive on the system leading to denial of service. | 4.9 |
| 2019-01-28 | CVE-2018-19015 | OS Command Injection vulnerability in Omron Cx-Supervisor An attacker could inject commands to launch programs and create, write, and read files on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file. | 7.3 |
| 2019-01-24 | CVE-2018-12237 | OS Command Injection vulnerability in Symantec Reporter The Symantec Reporter CLI 10.1 prior to 10.1.5.6 and 10.2 prior to 10.2.1.8 is susceptible to an OS command injection vulnerability. | 7.2 |
| 2019-01-24 | CVE-2019-1652 | OS Command Injection vulnerability in Cisco Rv320 Firmware and Rv325 Firmware A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands. | 7.2 |
| 2019-01-24 | CVE-2019-1650 | OS Command Injection vulnerability in Cisco products A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device. | 8.8 |
| 2019-01-24 | CVE-2018-17707 | OS Command Injection vulnerability in Epicgames Launcher This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Epic Games Launcher versions prior to 8.2.2. | 8.8 |