Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-13 | CVE-2023-26210 | OS Command Injection vulnerability in Fortinet Fortiadc Multiple improper neutralization of special elements used in an os command ('OS Command Injection') vulnerabilties [CWE-78] in Fortinet FortiADCManager version 7.1.0 and before 7.0.0, FortiADC version 7.2.0 and before 7.1.2 allows a local authenticated attacker to execute arbitrary shell code as `root` user via crafted CLI requests. | 7.8 |
| 2023-06-13 | CVE-2023-28000 | OS Command Injection vulnerability in Fortinet Fortiadc An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in FortiADC CLI 7.1.0, 7.0.0 through 7.0.3, 6.2.0 through 6.2.4, 6.1 all versions, 6.0 all versions may allow a local and authenticated attacker to execute unauthorized commands via specifically crafted arguments in diagnose system df CLI command. | 7.8 |
| 2023-06-12 | CVE-2023-34334 | OS Command Injection vulnerability in AMI Megarac Sp-X AMI BMC contains a vulnerability in the SPX REST API, where an attacker with the required privileges can inject arbitrary shell commands, which may lead to code execution, denial of service, information disclosure, or data tampering. | 8.8 |
| 2023-06-12 | CVE-2023-34343 | OS Command Injection vulnerability in AMI Megarac Sp-X AMI BMC contains a vulnerability in the SPX REST API, where an attacker with the required privileges can inject arbitrary shell commands, which may lead to code execution, denial of service, information disclosure, or data tampering. | 8.8 |
| 2023-06-06 | CVE-2023-33381 | OS Command Injection vulnerability in Mitrastar Gpt-2741Gnac Firmware Arg5.8110Wvn0B72 A command injection vulnerability was found in the ping functionality of the MitraStar GPT-2741GNAC router (firmware version AR_g5.8_110WVN0b7_2). | 7.2 |
| 2023-06-02 | CVE-2022-47616 | OS Command Injection vulnerability in Hitrontech Coda-5310 Firmware Hitron CODA-5310 has insufficient filtering for specific parameters in the connection test function. | 7.2 |
| 2023-06-01 | CVE-2023-33965 | OS Command Injection vulnerability in Txthinking Brook Brook is a cross-platform programmable network tool. | 8.8 |
| 2023-05-31 | CVE-2023-25539 | OS Command Injection vulnerability in Dell Networker Dell NetWorker 19.6.1.2, contains an OS command injection Vulnerability in the NetWorker client. | 9.8 |
| 2023-05-30 | CVE-2023-34152 | OS Command Injection vulnerability in multiple products A vulnerability was found in ImageMagick. | 9.8 |
| 2023-05-30 | CVE-2022-46361 | OS Command Injection vulnerability in Honeywell Onewireless Network Wireless Device Manager Firmware R322.1 An attacker having physical access to WDM can plug USB device to gain access and execute unwanted commands. | 6.8 |