Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

DATE CVE VULNERABILITY TITLE RISK
2024-01-08 CVE-2023-35959 OS Command Injection vulnerability in Tonybybell Gtkwave 3.3.115
Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115.
local
low complexity
tonybybell CWE-78
7.8
7.8
2024-01-08 CVE-2023-35960 OS Command Injection vulnerability in Tonybybell Gtkwave 3.3.115
Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115.
local
low complexity
tonybybell CWE-78
7.8
7.8
2024-01-08 CVE-2023-35961 OS Command Injection vulnerability in Tonybybell Gtkwave 3.3.115
Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115.
local
low complexity
tonybybell CWE-78
7.8
7.8
2024-01-08 CVE-2023-35962 OS Command Injection vulnerability in Tonybybell Gtkwave 3.3.115
Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115.
local
low complexity
tonybybell CWE-78
7.8
7.8
2024-01-08 CVE-2023-35963 OS Command Injection vulnerability in Tonybybell Gtkwave 3.3.115
Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115.
local
low complexity
tonybybell CWE-78
7.8
7.8
2024-01-08 CVE-2023-35964 OS Command Injection vulnerability in Tonybybell Gtkwave 3.3.115
Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115.
local
low complexity
tonybybell CWE-78
7.8
7.8
2024-01-08 CVE-2023-29048 OS Command Injection vulnerability in Open-Xchange OX APP Suite 7.10.5/7.10.6
A component for parsing OXMF templates could be abused to execute arbitrary system commands that would be executed as the non-privileged runtime user.
network
low complexity
open-xchange CWE-78
8.8
8.8
2024-01-08 CVE-2024-0298 OS Command Injection vulnerability in Totolink N200Re Firmware 9.3.5U.6139B20201216
A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216.
network
low complexity
totolink CWE-78
critical
 9.8
9.8
2024-01-08 CVE-2024-0292 OS Command Injection vulnerability in Totolink Lr1200Gb Firmware 9.1.0U.6619B20230130
A vulnerability classified as critical has been found in Totolink LR1200GB 9.1.0u.6619_B20230130.
network
low complexity
totolink CWE-78
critical
 9.8
9.8
2024-01-05 CVE-2023-41289 OS Command Injection vulnerability in Qnap Qcalagent 1.1.6/1.1.7
An OS command injection vulnerability has been reported to affect QcalAgent.
network
low complexity
qnap CWE-78
8.8
8.8