Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

DATE CVE VULNERABILITY TITLE RISK
2023-10-05 CVE-2023-43069 OS Command Injection vulnerability in Dell Smartfabric Storage Software 1.0.0/1.4.0
Dell SmartFabric Storage Software v1.4 (and earlier) contain(s) an OS Command Injection Vulnerability in the CLI.
local
low complexity
dell CWE-78
7.8
2023-10-05 CVE-2023-4401 OS Command Injection vulnerability in Dell Smartfabric Storage Software 1.0.0/1.4.0
Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the CLI use of the ‘more’ command.
network
low complexity
dell CWE-78
8.8
2023-10-04 CVE-2023-36618 OS Command Injection vulnerability in Unify Session Border Controller 10R3.01.03
Atos Unify OpenScape Session Border Controller through V10 R3.01.03 allows execution of OS commands as root user by low-privileged authenticated users.
network
low complexity
unify CWE-78
8.8
2023-10-03 CVE-2023-33268 OS Command Injection vulnerability in DTS Monitoring 3.57.0
An issue was discovered in DTS Monitoring 3.57.0.
network
low complexity
dts CWE-78
critical
9.8
2023-10-03 CVE-2023-33269 OS Command Injection vulnerability in DTS Monitoring 3.57.0
An issue was discovered in DTS Monitoring 3.57.0.
network
low complexity
dts CWE-78
critical
9.8
2023-10-03 CVE-2023-33270 OS Command Injection vulnerability in DTS Monitoring 3.57.0
An issue was discovered in DTS Monitoring 3.57.0.
network
low complexity
dts CWE-78
critical
9.8
2023-10-03 CVE-2023-33271 OS Command Injection vulnerability in DTS Monitoring 3.57.0
An issue was discovered in DTS Monitoring 3.57.0.
network
low complexity
dts CWE-78
critical
9.8
2023-10-03 CVE-2023-33272 OS Command Injection vulnerability in DTS Monitoring 3.57.0
An issue was discovered in DTS Monitoring 3.57.0.
network
low complexity
dts CWE-78
critical
9.8
2023-10-03 CVE-2023-33273 OS Command Injection vulnerability in DTS Monitoring 3.57.0
An issue was discovered in DTS Monitoring 3.57.0.
network
low complexity
dts CWE-78
critical
9.8
2023-10-03 CVE-2023-39222 OS Command Injection vulnerability in Furunosystems products
OS command injection vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to execute an arbitrary OS command that is not intended to be executed from the web interface by sending a specially crafted request.
network
low complexity
furunosystems CWE-78
8.8