Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,964)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-50393 1Qnap 2Qts Quts Hero Sep 23, 2025 Dec 6, 2024 8.7 HIGH· v4 9.8 CRITICAL· v3 N/A· v2 A command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands. We have already fixed the...Show more A command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands. We have already fixed the vulnerability in the following versions: QTS 5.1.9.2954 build 20241120 and later QTS 5.2.2.2950 build 20241114 and later QuTS hero h5.1.9.2954 build 20241120 and later QuTS hero h5.2.2.2952 build 20241116 and laterShow less
CVE-2024-50388 1Qnap 1Hybrid Backup Sync Jan 30, 2026 Dec 6, 2024 9.5 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 An OS command injection vulnerability has been reported to affect HBS 3 Hybrid Backup Sync. If exploited, the vulnerability could allow remote attackers to execute commands. We have already fixed the vulnerability in th...Show more An OS command injection vulnerability has been reported to affect HBS 3 Hybrid Backup Sync. If exploited, the vulnerability could allow remote attackers to execute commands. We have already fixed the vulnerability in the following version: HBS 3 Hybrid Backup Sync 25.1.1.673 and laterShow less
CVE-2024-48863 1Qnap 1License Center Dec 8, 2025 Dec 6, 2024 7.7 HIGH· v4 9.8 CRITICAL· v3 N/A· v2 A command injection vulnerability has been reported to affect License Center. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands. We have already fixed the vulnerability in the fo...Show more A command injection vulnerability has been reported to affect License Center. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands. We have already fixed the vulnerability in the following version: License Center 1.9.43 and laterShow less
CVE-2024-47133 - - Dec 18, 2024 Dec 5, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 UD-LT1 firmware Ver.2.1.9 and earlier and UD-LT1/EX firmware Ver.2.1.9 and earlier allow a remote authenticated attacker with an administrative account to execute arbitrary OS commands.
CVE-2024-51465 1Ibm 1App Connect Enterprise Certified Container Aug 14, 2025 Dec 4, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 IBM App Connect Enterprise Certified Container 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, and 12.3 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request.
CVE-2024-9200 1Zyxel 6Emg6726 B10a Firmware Vmg3927 B50b FirmwareVmg4005 B50a Firmware+3 more Jan 21, 2025 Dec 3, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 A post-authentication command injection vulnerability in the "host" parameter of the diagnostic function in Zyxel VMG4005-B50A firmware versions through V5.15(ABQA.2.2)C0 could allow an authenticated attacker with admini...Show more A post-authentication command injection vulnerability in the "host" parameter of the diagnostic function in Zyxel VMG4005-B50A firmware versions through V5.15(ABQA.2.2)C0 could allow an authenticated attacker with administrator privileges to execute operating system (OS) commands on a vulnerable device.Show less
CVE-2024-53940 - - Dec 3, 2024 Dec 2, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 An issue was discovered in Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware 1.0) devices. Certain /cgi-bin/luci/admin endpoints are vulnerable to command injection. Attackers can exploit this by send...Show more An issue was discovered in Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware 1.0) devices. Certain /cgi-bin/luci/admin endpoints are vulnerable to command injection. Attackers can exploit this by sending crafted payloads through parameters intended for the ping utility, enabling arbitrary command execution with root-level permissions on the device.Show less
CVE-2024-53939 - - Dec 3, 2024 Dec 2, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 An issue was discovered in Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware 1.0) devices. The /cgi-bin/luci/admin/opsw/Dual_freq_un_apple endpoint is vulnerable to command injection through the 2.4 G...Show more An issue was discovered in Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware 1.0) devices. The /cgi-bin/luci/admin/opsw/Dual_freq_un_apple endpoint is vulnerable to command injection through the 2.4 GHz and 5 GHz name parameters, allowing an attacker to execute arbitrary commands on the device (with root-level permissions) via crafted input.Show less
CVE-2024-53375 - - Dec 17, 2024 Dec 2, 2024 N/A· v4 8.0 HIGH· v3 N/A· v2 An Authenticated Remote Code Execution (RCE) vulnerability affects the TP-Link Archer router series. A vulnerability exists in the "tmp_get_sites" function of the HomeShield functionality provided by TP-Link. This vulner...Show more An Authenticated Remote Code Execution (RCE) vulnerability affects the TP-Link Archer router series. A vulnerability exists in the "tmp_get_sites" function of the HomeShield functionality provided by TP-Link. This vulnerability is still exploitable without the activation of the HomeShield functionality.Show less
CVE-2024-53992 - - Dec 2, 2024 Dec 2, 2024 8.8 HIGH· v4 N/A· v3 N/A· v2 unzip-bot is a Telegram bot to extract various types of archives. Users could exploit unsanitized inputs to inject malicious commands that are executed through subprocess.Popen with shell=True. Attackers can exploit this...Show more unzip-bot is a Telegram bot to extract various types of archives. Users could exploit unsanitized inputs to inject malicious commands that are executed through subprocess.Popen with shell=True. Attackers can exploit this vulnerability using a crafted archive name, password, or video name. This vulnerability is fixed in 7.0.3a.Show less
CVE-2024-49803 1Ibm 1Security Verify Access Jan 29, 2025 Nov 29, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request.
CVE-2024-11983 - - Nov 29, 2024 Nov 29, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 Certain models of routers from Billion Electric has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject arbitrary system commands into a specific SSH function and exec...Show more Certain models of routers from Billion Electric has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject arbitrary system commands into a specific SSH function and execute them on the device.Show less
CVE-2024-11482 1Trellix 1Enterprise Security Manager Oct 28, 2025 Nov 29, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A vulnerability in ESM 11.6.10 allows unauthenticated access to the internal Snowservice API and enables remote code execution through command injection, executed as the root user.
CVE-2024-10896 1Logichunt 1Logo Slider May 15, 2025 Nov 28, 2024 N/A· v4 5.4 MEDIUM· v3 N/A· v2 The Logo Slider WordPress plugin before 4.5.0 does not sanitise and escape some of its Logo and Slider settings, which could allow high privilege users such as Contributor to perform Stored Cross-Site Scripting
CVE-2024-51228 - - Nov 29, 2024 Nov 27, 2024 N/A· v4 6.8 MEDIUM· v3 N/A· v2 An issue in TOTOLINK-CX-A3002RU V1.0.4-B20171106.1512 and TOTOLINK-CX-N150RT V2.1.6-B20171121.1002 and TOTOLINK-CX-N300RT V2.1.6-B20170724.1420 and TOTOLINK-CX-N300RT V2.1.8-B20171113.1408 and TOTOLINK-CX-N300RT V2.1.8-B...Show more An issue in TOTOLINK-CX-A3002RU V1.0.4-B20171106.1512 and TOTOLINK-CX-N150RT V2.1.6-B20171121.1002 and TOTOLINK-CX-N300RT V2.1.6-B20170724.1420 and TOTOLINK-CX-N300RT V2.1.8-B20171113.1408 and TOTOLINK-CX-N300RT V2.1.8-B20191010.1107 and TOTOLINK-CX-N302RE V2.0.2-B20170511.1523 allows a remote attacker to execute arbitrary code via the /boafrm/formSysCmd component.Show less
CVE-2024-31976 1Engeniustech 1Ews356 Fir Firmware Jan 26, 2026 Nov 27, 2024 N/A· v4 8.0 HIGH· v3 N/A· v2 EnGenius EWS356-FIR 1.1.30 and earlier devices allow a remote attacker to execute arbitrary OS commands via the Controller connectivity parameter.
CVE-2024-9461 1Boldgrid 1Total Upkeep May 22, 2025 Nov 26, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.16.6 via the cron_interval parameter. This...Show more The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.16.6 via the cron_interval parameter. This is due to missing input validation and sanitization. This makes it possible for authenticated attackers, with Administrator-level access and above, to execute code on the server.Show less
CVE-2024-50377 1Advantech 3Eki 6333ac 1gpo Firmware Eki 6333ac 2g FirmwareEki 6333ac 2gd Firmware Jan 23, 2026 Nov 26, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A CWE-798 "Use of Hard-coded Credentials" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G (<= 1.6.3), EKI-6333AC-2GD (<= v1.6.3) and EKI-6333AC-1GPO (<= v1.2.1). The vulnerability...Show more A CWE-798 "Use of Hard-coded Credentials" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G (<= 1.6.3), EKI-6333AC-2GD (<= v1.6.3) and EKI-6333AC-1GPO (<= v1.2.1). The vulnerability is associated to the backup configuration functionality that by default encrypts the archives using a static password.Show less
CVE-2024-50376 1Advantech 3Eki 6333ac 1gpo Firmware Eki 6333ac 2g FirmwareEki 6333ac 2gd Firmware Jan 23, 2026 Nov 26, 2024 N/A· v4 5.2 MEDIUM· v3 N/A· v2 A CWE-79 "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G (<= 1.6.3), EKI-6333AC-2GD (<= v1.6....Show more A CWE-79 "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G (<= 1.6.3), EKI-6333AC-2GD (<= v1.6.3) and EKI-6333AC-1GPO (<= v1.2.1). The vulnerability can be exploited remotely leveraging a rogue Wi-Fi access point with a malicious SSID.Show less
CVE-2024-50375 1Advantech 3Eki 6333ac 1gpo Firmware Eki 6333ac 2g FirmwareEki 6333ac 2gd Firmware Jan 23, 2026 Nov 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A CWE-306 "Missing Authentication for Critical Function" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G (<= 1.6.3), EKI-6333AC-2GD (<= v1.6.3) and EKI-6333AC-1GPO (<= v1.2.1). The...Show more A CWE-306 "Missing Authentication for Critical Function" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G (<= 1.6.3), EKI-6333AC-2GD (<= v1.6.3) and EKI-6333AC-1GPO (<= v1.2.1). The vulnerability can be exploited by remote unauthenticated users capable of interacting with the default "edgserver" service enabled on the access point.Show less

Previous 1...939495...299 Next