Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-09-15 | CVE-2018-17064 | OS Command Injection vulnerability in Dlink Dir-816 A2 Firmware 1.10B05 An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. | 9.8 |
| 2018-09-15 | CVE-2018-17063 | OS Command Injection vulnerability in Dlink Dir-816 A2 Firmware 1.10B05 An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. | 9.8 |
| 2018-09-13 | CVE-2018-16741 | OS Command Injection vulnerability in multiple products An issue was discovered in mgetty before 1.2.1. | 7.8 |
| 2018-09-07 | CVE-2018-15484 | OS Command Injection vulnerability in Kone Group Controller Firmware An issue was discovered on KONE Group Controller (KGC) devices before 4.6.5. | 9.8 |
| 2018-09-07 | CVE-2018-16460 | OS Command Injection vulnerability in Umbraengineering PS 0.0.1/0.0.2 A command Injection in ps package versions <1.0.0 for Node.js allowed arbitrary commands to be executed when attacker controls the PID. | 9.8 |
| 2018-09-07 | CVE-2018-4010 | OS Command Injection vulnerability in Protonvpn 1.5.1 An exploitable code execution vulnerability exists in the connect functionality of ProtonVPN VPN client 1.5.1. | 7.8 |
| 2018-09-07 | CVE-2018-3952 | OS Command Injection vulnerability in Nordvpn 6.14.28.0 An exploitable code execution vulnerability exists in the connect functionality of NordVPN 6.14.28.0. | 8.8 |
| 2018-09-07 | CVE-2018-0643 | OS Command Injection vulnerability in multiple products Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0 (panda-server) 1:1.4.9+p41-u4jma1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via unspecified vectors. | 6.6 |
| 2018-09-06 | CVE-2018-15726 | OS Command Injection vulnerability in Pulsesecure Pulse Secure Desktop Client The Pulse Secure Desktop (macOS) 5.3RX before 5.3R5 and 9.0R1 has a Privilege Escalation Vulnerability. | 5.3 |
| 2018-09-06 | CVE-2018-1000666 | OS Command Injection vulnerability in multiple products GIG Technology NV JumpScale Portal 7 version before commit 15443122ed2b1cbfd7bdefc048bf106f075becdb contains a CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in method: notifySpaceModification; that can result in Improper validation of parameters results in command execution. | 9.8 |