Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-26 | CVE-2023-34420 | OS Command Injection vulnerability in Lenovo Xclarity Administrator A valid, authenticated LXCA user with elevated privileges may be able to execute command injections through crafted calls to a specific web API. | 7.2 |
| 2023-06-26 | CVE-2023-30261 | OS Command Injection vulnerability in Openwb 1.6/1.7 Command Injection vulnerability in OpenWB 1.6 and 1.7 allows remote attackers to run arbitrary commands via crafted GET request. | 9.8 |
| 2023-06-23 | CVE-2023-30258 | OS Command Injection vulnerability in Magnussolution Magnusbilling Command Injection vulnerability in MagnusSolution magnusbilling 6.x and 7.x allows remote attackers to run arbitrary commands via unauthenticated HTTP request. | 9.8 |
| 2023-06-22 | CVE-2023-35174 | OS Command Injection vulnerability in Livebook Livebook is a web application for writing interactive and collaborative code notebooks. | 9.8 |
| 2023-06-21 | CVE-2023-24261 | OS Command Injection vulnerability in Gl-Inet Gl-E750 Firmware 3.215 A vulnerability in GL.iNET GL-E750 Mudi before firmware v3.216 allows authenticated attackers to execute arbitrary code via a crafted POST request. | 7.2 |
| 2023-06-20 | CVE-2023-33869 | OS Command Injection vulnerability in Enphase Envoy Firmware D7.0.88 Enphase Envoy versions D7.0.88 is vulnerable to a command injection exploit that may allow an attacker to execute root commands. | 9.8 |
| 2023-06-16 | CVE-2022-48472 | OS Command Injection vulnerability in Huawei Bisheng-Wnm Firmware and Ota-Bisheng Firmware A Huawei printer has a system command injection vulnerability. | 9.8 |
| 2023-06-15 | CVE-2023-34800 | OS Command Injection vulnerability in Dlink Go-Rt-Ac750 Firmware Reva1.01B03 D-Link Go-RT-AC750 revA_v101b03 was discovered to contain a command injection vulnerability via the service parameter at genacgi_main. | 9.8 |
| 2023-06-15 | CVE-2022-32752 | OS Command Injection vulnerability in IBM Security Directory Suite VA 8.0.1/8.0.1.19 IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. | 8.8 |
| 2023-06-13 | CVE-2023-30764 | OS Command Injection vulnerability in Kbdevice products OS command injection vulnerability exists in KB-AHR series and KB-IRIP series. | 9.8 |