Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-04-29 | CVE-2024-3191 | OS Command Injection vulnerability in Mailcleaner A vulnerability, which was classified as critical, has been found in MailCleaner up to 2023.03.14. | 9.8 |
| 2024-04-29 | CVE-2024-3193 | OS Command Injection vulnerability in Mailcleaner A vulnerability has been found in MailCleaner up to 2023.03.14 and classified as critical. | 8.8 |
| 2024-04-29 | CVE-2024-3196 | OS Command Injection vulnerability in Mailcleaner A vulnerability was found in MailCleaner up to 2023.03.14. | 6.7 |
| 2024-04-24 | CVE-2024-20358 | OS Command Injection vulnerability in Cisco Adaptive Security Appliance Software A vulnerability in the Cisco Adaptive Security Appliance (ASA) restore functionality that is available in Cisco ASA Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system with root-level privileges. | 6.7 |
| 2024-04-15 | CVE-2024-3781 | OS Command Injection vulnerability in Whitebearsolutions Wbsairback 21.02.04 Command injection vulnerability in the operating system. | 9.1 |
| 2024-04-04 | CVE-2023-3454 | OS Command Injection vulnerability in Broadcom Fabric Operating System Remote code execution (RCE) vulnerability in Brocade Fabric OS after v9.0 and before v9.2.0 could allow an attacker to execute arbitrary code and use this to gain root access to the Brocade switch. | 9.8 |
| 2024-04-02 | CVE-2024-2389 | OS Command Injection vulnerability in Progress Flowmon In Flowmon versions prior to 11.1.14 and 12.3.5, an operating system command injection vulnerability has been identified. An unauthenticated user can gain entry to the system via the Flowmon management interface, allowing for the execution of arbitrary system commands. | 9.8 |
| 2024-03-22 | CVE-2024-29185 | OS Command Injection vulnerability in Freescout FreeScout is a self-hosted help desk and shared mailbox. | 9.0 |
| 2024-03-22 | CVE-2024-2448 | OS Command Injection vulnerability in Progress Loadmaster 7.1.35.10/7.2.48.10 An OS command injection vulnerability has been identified in LoadMaster. An authenticated UI user with any permission settings may be able to inject commands into a UI component using a shell command resulting in OS command injection. | 8.8 |
| 2024-03-15 | CVE-2023-51699 | OS Command Injection vulnerability in Linuxfoundation Fluid Fluid is an open source Kubernetes-native Distributed Dataset Orchestrator and Accelerator for data-intensive applications. | 6.0 |