Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,964)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-45798 - - Sep 20, 2024 Sep 17, 2024 N/A· v4 9.9 CRITICAL· v3 N/A· v2 arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. The `arduino-esp32` CI is vulnerable to multiple Poisoned Pipeline Execution (PPE) vulnerabilities. Co...Show more arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. The `arduino-esp32` CI is vulnerable to multiple Poisoned Pipeline Execution (PPE) vulnerabilities. Code injection in `tests_results.yml` workflow (`GHSL-2024-169`) and environment Variable injection (`GHSL-2024-170`). These issue have been addressed but users are advised to verify the contents of the downloaded artifacts.Show less
CVE-2024-45682 1Millbeck 1Proroute H685t W Firmware Sep 27, 2024 Sep 17, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 There is a command injection vulnerability that may allow an attacker to inject malicious input on the device's operating system.
CVE-2024-42503 - - Sep 20, 2024 Sep 17, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 Authenticated command execution vulnerability exist in the ArubaOS command line interface (CLI). Successful exploitation of this vulnerabilities result in the ability to run arbitrary commands as a priviledge user on th...Show more Authenticated command execution vulnerability exist in the ArubaOS command line interface (CLI). Successful exploitation of this vulnerabilities result in the ability to run arbitrary commands as a priviledge user on the underlying operating system.Show less
CVE-2024-42502 - - Sep 20, 2024 Sep 17, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 Authenticated command injection vulnerability exists in the ArubaOS command line interface. Successful exploitation of this vulnerability result in the ability to inject shell commands on the underlying operating system.
CVE-2024-45698 1Dlink 1Dir X4860 Firmware Oct 15, 2024 Sep 16, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Certain models of D-Link wireless routers do not properly validate user input in the telnet service, allowing unauthenticated remote attackers to use hard-coded credentials to log into telnet and inject arbitrary OS comm...Show more Certain models of D-Link wireless routers do not properly validate user input in the telnet service, allowing unauthenticated remote attackers to use hard-coded credentials to log into telnet and inject arbitrary OS commands, which can then be executed on the device.Show less
CVE-2024-8869 1Totolink 1A720r Firmware Sep 20, 2024 Sep 15, 2024 2.3 LOW· v4 8.1 HIGH· v3 4.6 MEDIUM· v2 A vulnerability classified as critical has been found in TOTOLINK A720R 4.1.5. Affected is the function exportOvpn. The manipulation leads to os command injection. It is possible to launch the attack remotely. The comple...Show more A vulnerability classified as critical has been found in TOTOLINK A720R 4.1.5. Affected is the function exportOvpn. The manipulation leads to os command injection. It is possible to launch the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-8281 - - Sep 14, 2024 Sep 13, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection through specially crafted command line input in the XCC SSH captiv...Show more An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection through specially crafted command line input in the XCC SSH captive shell.Show less
CVE-2024-8280 - - Sep 14, 2024 Sep 13, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection or cause a recoverable denial of service using a specially crafted...Show more An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection or cause a recoverable denial of service using a specially crafted file.Show less
CVE-2024-8279 - - Sep 14, 2024 Sep 13, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 A privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads.
CVE-2024-8278 - - Sep 14, 2024 Sep 13, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 A privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perform command injection via specially crafted IPMI commands.
CVE-2024-8686 1Paloaltonetworks 1Pan Os Oct 3, 2024 Sep 11, 2024 8.6 HIGH· v4 7.2 HIGH· v3 N/A· v2 A command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to bypass system restrictions and run arbitrary commands as root on the firewall.
CVE-2024-20483 1Cisco 1Ios Xr Oct 3, 2024 Sep 11, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 Multiple vulnerabilities in Cisco Routed PON Controller Software, which runs as a docker container on hardware that is supported by Cisco IOS XR Software, could allow an authenticated, remote attacker with Administrator-...Show more Multiple vulnerabilities in Cisco Routed PON Controller Software, which runs as a docker container on hardware that is supported by Cisco IOS XR Software, could allow an authenticated, remote attacker with Administrator-level privileges on the PON Manager or direct access to the PON Manager MongoDB instance to perform command injection attacks on the PON Controller container and execute arbitrary commands as root. These vulnerabilities are due to insufficient validation of arguments that are passed to specific configuration commands. An attacker could exploit these vulnerabilities by including crafted input as the argument of an affected configuration command. A successful exploit could allow the attacker to execute arbitrary commands as root on the PON controller.Show less
CVE-2024-20398 1Cisco 1Ios Xr Oct 3, 2024 Sep 11, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to obtain read/write file system access on the underlying operating system of an affected device. This vulnerability is...Show more A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to obtain read/write file system access on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of user arguments that are passed to specific CLI commands. An attacker with a low-privileged account could exploit this vulnerability by using crafted commands at the prompt. A successful exploit could allow the attacker to elevate privileges to root.Show less
CVE-2024-6091 1Agpt 1Autogpt Classic Aug 5, 2025 Sep 11, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A vulnerability in significant-gravitas/autogpt version 0.5.1 allows an attacker to bypass the shell commands denylist settings. The issue arises when the denylist is configured to block specific commands, such as 'whoam...Show more A vulnerability in significant-gravitas/autogpt version 0.5.1 allows an attacker to bypass the shell commands denylist settings. The issue arises when the denylist is configured to block specific commands, such as 'whoami' and '/bin/whoami'. An attacker can circumvent this restriction by executing commands with a modified path, such as '/bin/./whoami', which is not recognized by the denylist.Show less
CVE-2024-8190 1Ivanti 1Cloud Services Appliance Oct 24, 2025 Sep 10, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 An OS command injection vulnerability in Ivanti Cloud Services Appliance versions 4.6 Patch 518 and before allows a remote authenticated attacker to obtain remote code execution. The attacker must have admin level privil...Show more An OS command injection vulnerability in Ivanti Cloud Services Appliance versions 4.6 Patch 518 and before allows a remote authenticated attacker to obtain remote code execution. The attacker must have admin level privileges to exploit this vulnerability.Show less
CVE-2024-8504 - - Nov 4, 2025 Sep 10, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 An attacker with authenticated access to VICIdial as an "agent" can execute arbitrary shell commands as the "root" user. This attack can be chained with CVE-2024-8503 to execute arbitrary shell commands starting from an...Show more An attacker with authenticated access to VICIdial as an "agent" can execute arbitrary shell commands as the "root" user. This attack can be chained with CVE-2024-8503 to execute arbitrary shell commands starting from an unauthenticated perspective.Show less
CVE-2024-7699 1Phoenixcontact 36Fl Mguard 2102 Firmware Fl Mguard 2105 FirmwareFl Mguard 4102 Pci Firmware+33 more Sep 27, 2024 Sep 10, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 An low privileged remote attacker can execute OS commands with root privileges due to improper neutralization of special elements in user data.
CVE-2024-43387 1Phoenixcontact 36Fl Mguard 2102 Firmware Fl Mguard 2105 FirmwareFl Mguard 4102 Pci Firmware+33 more Sep 27, 2024 Sep 10, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 A low privileged remote attacker can read and write files as root due to improper neutralization of special elements in the variable EMAIL_RELAY_PASSWORD in mGuard devices.
CVE-2024-43386 1Phoenixcontact 36Fl Mguard 2102 Firmware Fl Mguard 2105 FirmwareFl Mguard 4102 Pci Firmware+33 more Sep 27, 2024 Sep 10, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable EMAIL_NOTIFICATION.TO in mGuard devices.
CVE-2024-43385 1Phoenixcontact 36Fl Mguard 2102 Firmware Fl Mguard 2105 FirmwareFl Mguard 4102 Pci Firmware+33 more Sep 27, 2024 Sep 10, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 A low privileged remote attacker can trigger the execution of arbitrary OS commands as root due to improper neutralization of special elements in the variable PROXY_HTTP_PORT in mGuard devices.

Previous 1...104105106...299 Next