Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

DATE CVE VULNERABILITY TITLE RISK
2024-08-27 CVE-2024-8213 OS Command Injection vulnerability in Dlink products
A vulnerability classified as critical has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2024-08-27 CVE-2024-8214 OS Command Injection vulnerability in Dlink products
A vulnerability classified as critical was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2024-08-27 CVE-2024-8210 OS Command Injection vulnerability in Dlink products
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2024-08-27 CVE-2024-8211 OS Command Injection vulnerability in Dlink products
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2024-08-27 CVE-2024-41622 OS Command Injection vulnerability in Dlink Dir-846W Firmware Fw100A43
D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution (RCE) vulnerability via the tomography_ping_address parameter in /HNAP1/ interface.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2024-08-27 CVE-2024-44340 OS Command Injection vulnerability in Dlink Dir-846W Firmware Fw100A43
D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution (RCE) vulnerability via keys smartqos_express_devices and smartqos_normal_devices in SetSmartQoSSettings.
network
low complexity
dlink CWE-78
8.8
8.8
2024-08-27 CVE-2024-44341 OS Command Injection vulnerability in Dlink Dir-846W Firmware Fw100A43
D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution (RCE) vulnerability via the lan(0)_dhcps_staticlist parameter.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2024-08-27 CVE-2024-44342 OS Command Injection vulnerability in Dlink Dir-846W Firmware Fw100A43
D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution (RCE) vulnerability via the wl(0).(0)_ssid parameter.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2024-08-24 CVE-2024-8134 OS Command Injection vulnerability in Dlink products
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814.
network
low complexity
dlink CWE-78
critical
 9.8
9.8
2024-08-24 CVE-2024-8133 OS Command Injection vulnerability in Dlink products
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20240814.
network
low complexity
dlink CWE-78
critical
 9.8
9.8