Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-11-26 | CVE-2018-13318 | OS Command Injection vulnerability in Buffalo Ts5600D1206 Firmware 3.610.10 System command injection in User.create method in Buffalo TS5600D1206 version 3.61-0.10 allows attackers to execute system commands via the "name" parameter. | 7.2 |
| 2018-11-26 | CVE-2018-13311 | OS Command Injection vulnerability in Totolink A3002Ru Firmware 1.0.8 System command injection in formDlna in TOTOLINK A3002RU version 1.0.8 allows attackers to execute system commands via the "sambaUser" POST parameter. | 9.8 |
| 2018-11-26 | CVE-2018-11077 | OS Command Injection vulnerability in multiple products 'getlogs' utility in Dell EMC Avamar Server versions 7.2.0, 7.2.1, 7.3.0, 7.3.1, 7.4.0, 7.4.1, 7.5.0, 7.5.1 and 18.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1 and 2.2 is affected by an OS command injection vulnerability. | 6.7 |
| 2018-11-20 | CVE-2018-18859 | OS Command Injection vulnerability in Liquidvpn 1.36/1.37 Multiple local privilege escalation vulnerabilities have been identified in the LiquidVPN client through 1.37 for macOS. | 7.8 |
| 2018-11-20 | CVE-2018-18858 | OS Command Injection vulnerability in Liquidvpn 1.36/1.37 Multiple local privilege escalation vulnerabilities have been identified in the LiquidVPN client through 1.37 for macOS. | 7.8 |
| 2018-11-20 | CVE-2018-18857 | OS Command Injection vulnerability in Liquidvpn 1.36/1.37 Multiple local privilege escalation vulnerabilities have been identified in the LiquidVPN client through 1.37 for macOS. | 7.8 |
| 2018-11-20 | CVE-2018-18856 | OS Command Injection vulnerability in Liquidvpn 1.36/1.37 Multiple local privilege escalation vulnerabilities have been identified in the LiquidVPN client through 1.37 for macOS. | 7.8 |
| 2018-11-16 | CVE-2018-9086 | OS Command Injection vulnerability in Lenovo products In some Lenovo ThinkServer-branded servers, a command injection vulnerability exists in the BMC firmware download command. | 7.2 |
| 2018-11-15 | CVE-2018-0694 | OS Command Injection vulnerability in Soliton Filezen FileZen V3.0.0 to V4.2.1 allows remote attackers to execute arbitrary OS commands via unspecified vectors. | 9.8 |
| 2018-11-14 | CVE-2018-15711 | OS Command Injection vulnerability in Nagios XI 5.5.6 Nagios XI 5.5.6 allows remote authenticated attackers to reset and regenerate the API key of more privileged users. | 8.8 |