Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-15 | CVE-2023-34800 | OS Command Injection vulnerability in Dlink Go-Rt-Ac750 Firmware Reva1.01B03 D-Link Go-RT-AC750 revA_v101b03 was discovered to contain a command injection vulnerability via the service parameter at genacgi_main. | 9.8 |
| 2023-06-15 | CVE-2022-32752 | OS Command Injection vulnerability in IBM Security Directory Suite VA 8.0.1/8.0.1.19 IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. | 8.8 |
| 2023-06-13 | CVE-2023-30764 | OS Command Injection vulnerability in Kbdevice products OS command injection vulnerability exists in KB-AHR series and KB-IRIP series. | 9.8 |
| 2023-06-13 | CVE-2023-31198 | OS Command Injection vulnerability in Inaba products OS command injection vulnerability exists in Wi-Fi AP UNIT allows. | 7.2 |
| 2023-06-13 | CVE-2023-32548 | OS Command Injection vulnerability in Kingsoft WPS Office 10.8.0.6186 OS command injection vulnerability exists in WPS Office version 10.8.0.6186. | 8.1 |
| 2023-06-13 | CVE-2023-26210 | OS Command Injection vulnerability in Fortinet Fortiadc Multiple improper neutralization of special elements used in an os command ('OS Command Injection') vulnerabilties [CWE-78] in Fortinet FortiADCManager version 7.1.0 and before 7.0.0, FortiADC version 7.2.0 and before 7.1.2 allows a local authenticated attacker to execute arbitrary shell code as `root` user via crafted CLI requests. | 7.8 |
| 2023-06-13 | CVE-2023-28000 | OS Command Injection vulnerability in Fortinet Fortiadc An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in FortiADC CLI 7.1.0, 7.0.0 through 7.0.3, 6.2.0 through 6.2.4, 6.1 all versions, 6.0 all versions may allow a local and authenticated attacker to execute unauthorized commands via specifically crafted arguments in diagnose system df CLI command. | 7.8 |
| 2023-06-12 | CVE-2023-34334 | OS Command Injection vulnerability in AMI Megarac Sp-X AMI BMC contains a vulnerability in the SPX REST API, where an attacker with the required privileges can inject arbitrary shell commands, which may lead to code execution, denial of service, information disclosure, or data tampering. | 8.8 |
| 2023-06-12 | CVE-2023-34343 | OS Command Injection vulnerability in AMI Megarac Sp-X AMI BMC contains a vulnerability in the SPX REST API, where an attacker with the required privileges can inject arbitrary shell commands, which may lead to code execution, denial of service, information disclosure, or data tampering. | 8.8 |
| 2023-06-06 | CVE-2023-33381 | OS Command Injection vulnerability in Mitrastar Gpt-2741Gnac Firmware Arg5.8110Wvn0B72 A command injection vulnerability was found in the ping functionality of the MitraStar GPT-2741GNAC router (firmware version AR_g5.8_110WVN0b7_2). | 7.2 |