Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-05-03 | CVE-2023-35722 | OS Command Injection vulnerability in Netgear Rax30 Firmware NETGEAR RAX30 UPnP Command Injection Remote Code Execution Vulnerability. | 8.8 |
| 2024-05-03 | CVE-2023-35723 | OS Command Injection vulnerability in Dlink Dir-X3260 Firmware D-Link DIR-X3260 prog.cgi SOAPAction Command Injection Remote Code Execution Vulnerability. | 8.8 |
| 2024-04-29 | CVE-2024-3191 | OS Command Injection vulnerability in Mailcleaner A vulnerability, which was classified as critical, has been found in MailCleaner up to 2023.03.14. | 9.8 |
| 2024-04-29 | CVE-2024-3193 | OS Command Injection vulnerability in Mailcleaner A vulnerability has been found in MailCleaner up to 2023.03.14 and classified as critical. | 8.8 |
| 2024-04-29 | CVE-2024-3196 | OS Command Injection vulnerability in Mailcleaner A vulnerability was found in MailCleaner up to 2023.03.14. | 6.7 |
| 2024-04-24 | CVE-2024-20358 | OS Command Injection vulnerability in Cisco Adaptive Security Appliance Software A vulnerability in the Cisco Adaptive Security Appliance (ASA) restore functionality that is available in Cisco ASA Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system with root-level privileges. | 6.7 |
| 2024-04-15 | CVE-2024-3781 | OS Command Injection vulnerability in Whitebearsolutions Wbsairback 21.02.04 Command injection vulnerability in the operating system. | 9.1 |
| 2024-04-04 | CVE-2023-3454 | OS Command Injection vulnerability in Broadcom Fabric Operating System Remote code execution (RCE) vulnerability in Brocade Fabric OS after v9.0 and before v9.2.0 could allow an attacker to execute arbitrary code and use this to gain root access to the Brocade switch. | 9.8 |
| 2024-04-02 | CVE-2024-2389 | OS Command Injection vulnerability in Progress Flowmon In Flowmon versions prior to 11.1.14 and 12.3.5, an operating system command injection vulnerability has been identified. An unauthenticated user can gain entry to the system via the Flowmon management interface, allowing for the execution of arbitrary system commands. | 9.8 |
| 2024-03-29 | CVE-2024-30247 | OS Command Injection vulnerability in Nextcloud Nextcloudpi NextcloudPi is a ready to use image for Virtual Machines, Raspberry Pi, Odroid HC1, Rock64 and other boards. | 9.8 |