Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-03 | CVE-2021-42888 | OS Command Injection vulnerability in Totolink Ex1200T Firmware 4.1.2Cu.5215 TOTOLINK EX1200T V4.1.2cu.5215 contains a remote command injection vulnerability in function setLanguageCfg of the file global.so which can control langType to attack. | 9.8 |
| 2022-06-03 | CVE-2021-42884 | OS Command Injection vulnerability in Totolink Ex1200T Firmware 4.1.2Cu.5215 TOTOLINK EX1200T V4.1.2cu.5215 contains a remote command injection vulnerability in function setDeviceName of the file global.so which can control thedeviceName to attack. | 9.8 |
| 2022-06-03 | CVE-2021-42885 | OS Command Injection vulnerability in Totolink Ex1200T Firmware 4.1.2Cu.5215 TOTOLINK EX1200T V4.1.2cu.5215 contains a remote command injection vulnerability in function setDeviceMac of the file global.so which can control deviceName to attack. | 9.8 |
| 2022-06-02 | CVE-2022-26868 | OS Command Injection vulnerability in Dell Powerstoreos Dell EMC PowerStore versions 2.0.0.x, 2.0.1.x, and 2.1.0.x are vulnerable to a command injection flaw. | 7.8 |
| 2022-06-02 | CVE-2021-42875 | OS Command Injection vulnerability in Totolink Ex1200T Firmware 4.1.2Cu.5215 TOTOLINK EX1200T V4.1.2cu.5215 contains a remote command injection vulnerability in the function setDiagnosisCfg of the file lib/cste_modules/system.so to control the ipDoamin. | 9.8 |
| 2022-06-02 | CVE-2021-34078 | OS Command Injection vulnerability in ADP Lifion-Verifiy-Dependencies lifion-verify-dependencies through 1.1.0 is vulnerable to OS command injection via a crafted dependency name on the scanned project's package.json file. | 8.8 |
| 2022-06-02 | CVE-2021-34079 | OS Command Injection vulnerability in Docker-Tester Project Docker-Tester OS Command injection vulnerability in Mintzo Docker-Tester through 1.2.1 allows attackers to execute arbitrary commands via shell metacharacters in the 'ports' entry of a crafted docker-compose.yml file. | 9.8 |
| 2022-06-02 | CVE-2021-34080 | OS Command Injection vulnerability in Ssl-Utils Project Ssl-Utils OS Command Injection vulnerability in es128 ssl-utils 1.0.0 for Node.js allows attackers to execute arbitrary commands via unsanitized shell metacharacters provided to the createCertRequest() and the createCert() functions. | 9.8 |
| 2022-06-02 | CVE-2021-34081 | OS Command Injection vulnerability in Gitsome Project Gitsome OS Command Injection vulnerability in bbultman gitsome through 0.2.3 allows attackers to execute arbitrary commands via a crafted tag name of the target git repository. | 8.8 |
| 2022-06-02 | CVE-2021-34082 | OS Command Injection vulnerability in Proctree Project Proctree 0.1.0/0.1.1 OS Command Injection vulnerability in allenhwkim proctree through 0.1.1 and commit 0ac10ae575459457838f14e21d5996f2fa5c7593 for Node.js, allows attackers to execute arbitrary commands via the fix function. | 9.8 |