Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-14 | CVE-2023-48663 | OS Command Injection vulnerability in Dell products Dell vApp Manager, versions prior to 9.2.4.x contain a command injection vulnerability. | 7.2 |
| 2023-12-14 | CVE-2023-48664 | OS Command Injection vulnerability in Dell products Dell vApp Manager, versions prior to 9.2.4.x contain a command injection vulnerability. | 7.2 |
| 2023-12-14 | CVE-2023-48665 | OS Command Injection vulnerability in Dell products Dell vApp Manager, versions prior to 9.2.4.x contain a command injection vulnerability. | 7.2 |
| 2023-12-14 | CVE-2023-48667 | OS Command Injection vulnerability in Dell products Dell PowerProtect DD, versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an OS command injection vulnerability in administrator CLI. | 7.2 |
| 2023-12-14 | CVE-2023-48668 | OS Command Injection vulnerability in Dell Powerprotect Data Domain Management Center Dell PowerProtect DD, versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 on DDMC contain an OS command injection vulnerability in an admin operation. | 6.7 |
| 2023-12-14 | CVE-2023-44277 | OS Command Injection vulnerability in Dell products Dell PowerProtect DD, versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 contain an OS command injection vulnerability in the CLI. | 7.8 |
| 2023-12-13 | CVE-2023-6792 | OS Command Injection vulnerability in Paloaltonetworks Pan-Os An OS command injection vulnerability in the XML API of Palo Alto Networks PAN-OS software enables an authenticated API user to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall. | 6.3 |
| 2023-12-13 | CVE-2023-6795 | OS Command Injection vulnerability in Paloaltonetworks Pan-Os An OS command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall. | 4.7 |
| 2023-12-13 | CVE-2023-42495 | OS Command Injection vulnerability in Dasannetworks W-Web Dasan Networks - W-Web versions 1.22-1.27 - CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') | 9.8 |
| 2023-12-13 | CVE-2023-40716 | OS Command Injection vulnerability in Fortinet Fortitester An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in the command line interpreter of FortiTester 2.3.0 through 7.2.3 may allow an authenticated attacker to execute unauthorized commands via specifically crafted arguments when running execute restore/backup . | 7.8 |