Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-01 | CVE-2018-3757 | OS Command Injection vulnerability in Pdf-Image Project Pdf-Image 2.0.0 Command injection exists in pdf-image v2.0.0 due to an unescaped string parameter. | 9.8 |
| 2018-06-01 | CVE-2018-3746 | OS Command Injection vulnerability in Pdfinfojs Project Pdfinfojs The pdfinfojs NPM module versions <= 0.3.6 has a command injection vulnerability that allows an attacker to execute arbitrary commands on the victim's machine. | 9.8 |
| 2018-05-31 | CVE-2018-11139 | OS Command Injection vulnerability in Quest Kace System Management Appliance 8.0.318 The '/common/ajax_email_connection_test.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by any authenticated user and can be abused to execute arbitrary commands on the system. | 8.8 |
| 2018-05-31 | CVE-2018-11138 | OS Command Injection vulnerability in Quest Kace System Management Appliance 8.0.318 The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by anonymous users and can be abused to execute arbitrary commands on the system. | 9.8 |
| 2018-05-31 | CVE-2018-11132 | OS Command Injection vulnerability in Quest Kace System Management Appliance 8.0.318 In order to perform actions that require higher privileges, the Quest KACE System Management Appliance 8.0.318 relies on a message queue that runs daemonized with root privileges and only allows a set of commands to be executed. | 8.8 |
| 2018-05-29 | CVE-2018-1242 | OS Command Injection vulnerability in EMC Recoverpoint and Recoverpoint for Virtual Machines Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3, contains a command injection vulnerability in the Boxmgmt CLI. | 6.5 |
| 2018-05-29 | CVE-2018-1235 | OS Command Injection vulnerability in EMC Recoverpoint and Recoverpoint for Virtual Machines Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3, contain a command injection vulnerability. | 9.8 |
| 2018-05-23 | CVE-2018-10354 | OS Command Injection vulnerability in Trendmicro Email Encryption Gateway 5.5 A command injection remote command execution vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a remote attacker to execute arbitrary code on vulnerable installations due to a flaw in the LauncherServer. | 8.8 |
| 2018-05-19 | CVE-2018-4924 | OS Command Injection vulnerability in Adobe Dreamweaver Adobe Dreamweaver CC versions 18.0 and earlier have an OS Command Injection vulnerability. | 9.8 |
| 2018-05-19 | CVE-2018-4923 | OS Command Injection vulnerability in Adobe Connect Adobe Connect versions 9.7 and earlier have an exploitable OS Command Injection. | 9.1 |