Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-08 | CVE-2022-38531 | OS Command Injection vulnerability in FPT G-97Rg3 Firmware and G-97Rg6M Firmware FPT G-97RG6M R4.2.98.035 and G-97RG3 R4.2.43.078 are vulnerable to Remote Command Execution in the ping function. | 8.8 |
| 2022-09-07 | CVE-2022-30078 | OS Command Injection vulnerability in Netgear R6200 Firmware and R6300 Firmware NETGEAR R6200_V2 firmware versions through R6200v2-V1.0.3.12_10.1.11 and R6300_V2 firmware versions through R6300v2-V1.0.4.52_10.0.93 allow remote authenticated attackers to execute arbitrary command via shell metacharacters in the ipv6_fix.cgi ipv6_wan_ipaddr, ipv6_lan_ipaddr, ipv6_wan_length, or ipv6_lan_length parameters. | 8.8 |
| 2022-09-06 | CVE-2022-23681 | OS Command Injection vulnerability in Arubanetworks Aos-Cx Multiple vulnerabilities exist in the AOS-CX command line interface that could lead to authenticated command injection. | 7.8 |
| 2022-09-06 | CVE-2022-23682 | OS Command Injection vulnerability in Arubanetworks Aos-Cx Multiple vulnerabilities exist in the AOS-CX command line interface that could lead to authenticated command injection. | 7.8 |
| 2022-09-06 | CVE-2022-23683 | OS Command Injection vulnerability in Arubanetworks Aos-Cx Authenticated command injection vulnerabilities exist in the AOS-CX Network Analytics Engine via NAE scripts. | 7.2 |
| 2022-09-06 | CVE-2022-34883 | OS Command Injection vulnerability in Hitachi Raid Manager Storage Replication Adapter OS Command Injection vulnerability in Hitachi RAID Manager Storage Replication Adapter allows remote authenticated users to execute arbitrary OS commands. | 8.8 |
| 2022-09-05 | CVE-2021-28398 | OS Command Injection vulnerability in Osgeo Geonetwork A privileged attacker in GeoNetwork before 3.12.0 and 4.x before 4.0.4 can use the directory harvester before-script to execute arbitrary OS commands remotely on the hosting infrastructure. | 7.2 |
| 2022-09-05 | CVE-2022-31814 | OS Command Injection vulnerability in Netgate Pfblockerng 2.1.426 pfSense pfBlockerNG through 2.1.4_26 allows remote attackers to execute arbitrary OS commands as root via shell metacharacters in the HTTP Host header. | 9.8 |
| 2022-08-31 | CVE-2022-37123 | OS Command Injection vulnerability in Dlink Dir-816 Firmware 1.10Cnb04 D-link DIR-816 A2_v1.10CNB04.img is vulnerable to Command injection via /goform/form2userconfig.cgi. | 8.8 |
| 2022-08-31 | CVE-2022-37129 | OS Command Injection vulnerability in Dlink Dir-816 Firmware 1.10Cnb04 D-Link DIR-816 A2_v1.10CNB04.img is vulnerable to Command Injection via /goform/SystemCommand. | 8.8 |