Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-29 | CVE-2018-1242 | OS Command Injection vulnerability in EMC Recoverpoint and Recoverpoint for Virtual Machines Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3, contains a command injection vulnerability in the Boxmgmt CLI. | 6.5 |
| 2018-05-29 | CVE-2018-1235 | OS Command Injection vulnerability in EMC Recoverpoint and Recoverpoint for Virtual Machines Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3, contain a command injection vulnerability. | 9.8 |
| 2018-05-23 | CVE-2018-10354 | OS Command Injection vulnerability in Trendmicro Email Encryption Gateway 5.5 A command injection remote command execution vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a remote attacker to execute arbitrary code on vulnerable installations due to a flaw in the LauncherServer. | 8.8 |
| 2018-05-19 | CVE-2018-4924 | OS Command Injection vulnerability in Adobe Dreamweaver Adobe Dreamweaver CC versions 18.0 and earlier have an OS Command Injection vulnerability. | 9.8 |
| 2018-05-19 | CVE-2018-4923 | OS Command Injection vulnerability in Adobe Connect Adobe Connect versions 9.7 and earlier have an exploitable OS Command Injection. | 9.1 |
| 2018-05-18 | CVE-2018-10967 | OS Command Injection vulnerability in D-Link Dir-550A Firmware and Dir-604M Firmware On D-Link DIR-550A and DIR-604M devices through v2.10KR, a malicious user can forge an HTTP request to inject operating system commands that can be executed on the device with higher privileges, aka remote code execution. | 8.8 |
| 2018-05-17 | CVE-2018-10730 | OS Command Injection vulnerability in Phoenixcontact products All Phoenix Contact managed FL SWITCH 3xxx, 4xxx, 48xx products running firmware version 1.0 to 1.33 are prone to OS command injection. | 9.1 |
| 2018-05-17 | CVE-2018-0324 | OS Command Injection vulnerability in Cisco Network Functions Virtualization Infrastructure 3.6.1/3.6.2/3.7.1 A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, high-privileged, local attacker to perform a command injection attack. | 6.7 |
| 2018-05-17 | CVE-2018-0279 | OS Command Injection vulnerability in Cisco Enterprise NFV Infrastructure Software A vulnerability in the Secure Copy Protocol (SCP) server of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to access the shell of the underlying Linux operating system on the affected device. | 8.8 |
| 2018-05-14 | CVE-2017-14434 | OS Command Injection vulnerability in Moxa Edr-810 Firmware 4.1 An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. | 8.8 |