Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-05 | CVE-2023-3097 | OS Command Injection vulnerability in Kylinos Kylin-Software-Properties A vulnerability was found in KylinSoft kylin-software-properties on KylinOS. | 7.8 |
| 2023-06-02 | CVE-2022-47616 | OS Command Injection vulnerability in Hitrontech Coda-5310 Firmware Hitron CODA-5310 has insufficient filtering for specific parameters in the connection test function. | 7.2 |
| 2023-06-02 | CVE-2023-28702 | OS Command Injection vulnerability in Asus Rt-Ac86U Firmware 3.0.0.4.386.51255 ASUS RT-AC86U does not filter special characters for parameters in specific web URLs. | 8.8 |
| 2023-06-01 | CVE-2023-33965 | OS Command Injection vulnerability in Txthinking Brook Brook is a cross-platform programmable network tool. | 8.8 |
| 2023-05-31 | CVE-2023-25539 | OS Command Injection vulnerability in Dell Networker Dell NetWorker 19.6.1.2, contains an OS command injection Vulnerability in the NetWorker client. | 9.8 |
| 2023-05-30 | CVE-2023-34152 | OS Command Injection vulnerability in multiple products A vulnerability was found in ImageMagick. | 9.8 |
| 2023-05-30 | CVE-2022-46361 | OS Command Injection vulnerability in Honeywell Onewireless Network Wireless Device Manager Firmware R322.1 An attacker having physical access to WDM can plug USB device to gain access and execute unwanted commands. | 6.8 |
| 2023-05-30 | CVE-2023-27988 | OS Command Injection vulnerability in Zyxel Nas326 Firmware, Nas540 Firmware and Nas542 Firmware The post-authentication command injection vulnerability in the Zyxel NAS326 firmware versions prior to V5.21(AAZF.13)C0 could allow an authenticated attacker with administrator privileges to execute some operating system (OS) commands on an affected device remotely. | 7.2 |
| 2023-05-29 | CVE-2023-30253 | OS Command Injection vulnerability in Dolibarr Erp/Crm Dolibarr before 17.0.1 allows remote code execution by an authenticated user via an uppercase manipulation: <?PHP instead of <?php in injected data. | 8.8 |
| 2023-05-26 | CVE-2023-31128 | OS Command Injection vulnerability in Nextcloud Cookbook NextCloud Cookbook is a recipe library app. | 8.8 |