Vulnerabilities > Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-20 | CVE-2022-2486 | OS Command Injection vulnerability in Wavlink Wl-Wn535K2 Firmware and Wl-Wn535K3 Firmware A vulnerability, which was classified as critical, was found in WAVLINK WN535K2 and WN535K3. | 9.8 |
| 2022-07-20 | CVE-2022-2487 | OS Command Injection vulnerability in Wavlink Wl-Wn535K2 Firmware and Wl-Wn535K3 Firmware A vulnerability has been found in WAVLINK WN535K2 and WN535K3 and classified as critical. | 9.8 |
| 2022-07-20 | CVE-2022-2488 | OS Command Injection vulnerability in Wavlink Wl-Wn535K2 Firmware and Wl-Wn535K3 Firmware A vulnerability was found in WAVLINK WN535K2 and WN535K3 and classified as critical. | 9.8 |
| 2022-07-19 | CVE-2022-34538 | OS Command Injection vulnerability in DW Megapix Firmware 4.2.0.32842 Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a command injection vulnerability in the component /admin/vca/bia/addacph.cgi. | 8.8 |
| 2022-07-19 | CVE-2022-34539 | OS Command Injection vulnerability in DW Megapix Firmware 4.2.0.32842 Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a command injection vulnerability in the component /admin/curltest.cgi. | 8.8 |
| 2022-07-19 | CVE-2022-34540 | OS Command Injection vulnerability in DW Megapix Firmware 4.2.0.32842 Digital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a command injection vulnerability in the component /admin/vca/license/license_tok.cgi. | 8.8 |
| 2022-07-19 | CVE-2022-27373 | OS Command Injection vulnerability in Phicomm Fir303B Firmware Shanghai Feixun Data Communication Technology Co., Ltd router fir302b A2 was discovered to contain a remote command execution (RCE) vulnerability via the Ping function. | 8.8 |
| 2022-07-19 | CVE-2022-27483 | OS Command Injection vulnerability in Fortinet Fortianalyzer and Fortimanager A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiManager version 7.0.0 through 7.0.3, 6.4.0 through 6.4.7, 6.2.x and 6.0.x and FortiAnalyzer version 7.0.0 through 7.0.3, version 6.4.0 through 6.4.7, 6.2.x and 6.0.x allows attacker to execute arbitrary shell code as `root` user via `diagnose system` CLI commands. | 7.2 |
| 2022-07-18 | CVE-2022-33891 | OS Command Injection vulnerability in Apache Spark The Apache Spark UI offers the possibility to enable ACLs via the configuration option spark.acls.enable. | 8.8 |
| 2022-07-17 | CVE-2022-26481 | OS Command Injection vulnerability in Poly products An issue was discovered in Poly Studio before 3.7.0. | 8.8 |