Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-30 | CVE-2023-40838 | OS Command Injection vulnerability in Tenda AC6 Firmware 15.03.05.16 Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin function 'sub_3A1D0' contains a command execution vulnerability. | 9.8 |
| 2023-08-30 | CVE-2023-40839 | OS Command Injection vulnerability in Tenda AC6 Firmware 15.03.05.16 Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin function 'sub_ADF3C' contains a command execution vulnerability. | 9.8 |
| 2023-08-28 | CVE-2023-41109 | OS Command Injection vulnerability in Patton Smartnode Sn200 Firmware 2.21.122041/3.21.223021 SmartNode SN200 (aka SN200) 3.21.2-23021 allows unauthenticated OS Command Injection. | 9.8 |
| 2023-08-28 | CVE-2023-1997 | OS Command Injection vulnerability in 3DS 3Dexperience R2021X/R2022X/R2023X An OS Command Injection vulnerability exists in SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023x. | 8.8 |
| 2023-08-27 | CVE-2022-43907 | OS Command Injection vulnerability in IBM Security Guardium 11.4 IBM Security Guardium 11.4 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. | 8.8 |
| 2023-08-23 | CVE-2023-40144 | OS Command Injection vulnerability in CBC products OS command injection vulnerability in the CBC products allows a remote authenticated attacker to execute an arbitrary OS command on the device or alter its settings. | 8.8 |
| 2023-08-18 | CVE-2023-39416 | OS Command Injection vulnerability in Northgrid Proself 1.07/1.62/5.61 Proself Enterprise/Standard Edition Ver5.61 and earlier, Proself Gateway Edition Ver1.62 and earlier, and Proself Mail Sanitize Edition Ver1.07 and earlier allow a remote authenticated attacker with an administrative privilege to execute arbitrary OS commands. | 7.2 |
| 2023-08-18 | CVE-2023-39455 | OS Command Injection vulnerability in Elecom products OS command injection vulnerability in ELECOM wireless LAN routers allows an authenticated user to execute an arbitrary OS command by sending a specially crafted request. | 8.8 |
| 2023-08-18 | CVE-2023-39944 | OS Command Injection vulnerability in Elecom Wrc-1750Ghbk Firmware and Wrc-F1167Acf Firmware OS command injection vulnerability in WRC-F1167ACF all versions, and WRC-1750GHBK all versions allows an attacker who can access the product to execute an arbitrary OS command by sending a specially crafted request. | 8.8 |
| 2023-08-18 | CVE-2023-40069 | OS Command Injection vulnerability in Elecom products OS command injection vulnerability in ELECOM wireless LAN routers allows an attacker who can access the product to execute an arbitrary OS command by sending a specially crafted request. | 9.8 |