Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,964)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-38033 1Asus 1Rt Ac86u Firmware Jun 17, 2026 Sep 7, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 ASUS RT-AC86U unused Traffic Analyzer legacy Statistic function has insufficient filtering of special character. A remote attacker with regular user privilege can exploit this vulnerability to perform command injection...Show more ASUS RT-AC86U unused Traffic Analyzer legacy Statistic function has insufficient filtering of special character. A remote attacker with regular user privilege can exploit this vulnerability to perform command injection attack to execute arbitrary commands, disrupt system or terminate services. Show less
CVE-2023-38032 1Asus 1Rt Ac86u Firmware Jun 17, 2026 Sep 7, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 ASUS RT-AC86U AiProtection security- related function has insufficient filtering of special character. A remote attacker with regular user privilege can exploit this vulnerability to perform command injection attack to...Show more ASUS RT-AC86U AiProtection security- related function has insufficient filtering of special character. A remote attacker with regular user privilege can exploit this vulnerability to perform command injection attack to execute arbitrary commands, disrupt system or terminate services. Show less
CVE-2023-38031 1Asus 1Rt Ac86u Firmware Jun 17, 2026 Sep 7, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 ASUS RT-AC86U Adaptive QoS - Web History function has insufficient filtering of special character. A remote attacker with regular user privilege can exploit this vulnerability to perform command injection attack to exec...Show more ASUS RT-AC86U Adaptive QoS - Web History function has insufficient filtering of special character. A remote attacker with regular user privilege can exploit this vulnerability to perform command injection attack to execute arbitrary commands, disrupt system or terminate services. Show less
CVE-2021-36023 1Magento 1Magento Jun 17, 2026 Sep 6, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an XML Injection vulnerability in the Widgets Update Layout. An attacker with admin privileges can trigger a s...Show more Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an XML Injection vulnerability in the Widgets Update Layout. An attacker with admin privileges can trigger a specially crafted script to achieve remote code execution.Show less
CVE-2023-41149 1F Revocrm 1F Revocrm Jun 17, 2026 Sep 6, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 F-RevoCRM version7.3.7 and version7.3.8 contains an OS command injection vulnerability. If this vulnerability is exploited, an attacker who can access the product may execute an arbitrary OS command on the server where t...Show more F-RevoCRM version7.3.7 and version7.3.8 contains an OS command injection vulnerability. If this vulnerability is exploited, an attacker who can access the product may execute an arbitrary OS command on the server where the product is running.Show less
CVE-2023-40531 1Tp Link 1Archer Ax6000 Firmware Jun 17, 2026 Sep 6, 2023 N/A· v4 8.0 HIGH· v3 N/A· v2 Archer AX6000 firmware versions prior to 'Archer AX6000(JP)_V1_1.3.0 Build 20221208' allows a network-adjacent authenticated attacker to execute arbitrary OS commands.
CVE-2023-40357 1Tp Link 4Archer A10 Firmware Archer Ax10 FirmwareArcher Ax11000 Firmware+1 more Jun 17, 2026 Sep 6, 2023 N/A· v4 8.0 HIGH· v3 N/A· v2 Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer AX50 firmware versions prior to 'Archer AX50(JP)_V1_230529', A...Show more Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer AX50 firmware versions prior to 'Archer AX50(JP)_V1_230529', Archer A10 firmware versions prior to 'Archer A10(JP)_V2_230504', Archer AX10 firmware versions prior to 'Archer AX10(JP)_V1.2_230508', and Archer AX11000 firmware versions prior to 'Archer AX11000(JP)_V1_230523'.Show less
CVE-2023-40193 1Tp Link 1Deco M4 Firmware Jun 17, 2026 Sep 6, 2023 N/A· v4 8.0 HIGH· v3 N/A· v2 Deco M4 firmware versions prior to 'Deco M4(JP)_V2_1.5.8 Build 20230619' allows a network-adjacent authenticated attacker to execute arbitrary OS commands.
CVE-2023-39935 1Tp Link 1Archer C5400 Firmware Jun 17, 2026 Sep 6, 2023 N/A· v4 8.0 HIGH· v3 N/A· v2 Archer C5400 firmware versions prior to 'Archer C5400(JP)_V2_230506' allows a network-adjacent authenticated attacker to execute arbitrary OS commands.
CVE-2023-39224 1Tp Link 1Archer C7 Firmware Jun 17, 2026 Sep 6, 2023 N/A· v4 8.0 HIGH· v3 N/A· v2 Archer C5 firmware all versions and Archer C7 firmware versions prior to 'Archer C7(JP)_V2_230602' allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Note that Archer C5 is no longer suppor...Show more Archer C5 firmware all versions and Archer C7 firmware versions prior to 'Archer C7(JP)_V2_230602' allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Note that Archer C5 is no longer supported, therefore the update for this product is not provided.Show less
CVE-2023-38588 1Tp Link 1Archer C3150 Firmware Jun 17, 2026 Sep 6, 2023 N/A· v4 8.0 HIGH· v3 N/A· v2 Archer C3150 firmware versions prior to 'Archer C3150(JP)_V2_230511' allows a network-adjacent authenticated attacker to execute arbitrary OS commands.
CVE-2023-38568 1Tp Link 1Archer A10 Firmware Jun 17, 2026 Sep 6, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Archer A10 firmware versions prior to 'Archer A10(JP)_V2_230504' allows a network-adjacent unauthenticated attacker to execute arbitrary OS commands.
CVE-2023-38563 1Tp Link 2Archer C1200 Firmware Archer C9 Firmware Jun 17, 2026 Sep 6, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Archer C1200 firmware versions prior to 'Archer C1200(JP)_V2_230508' and Archer C9 firmware versions prior to 'Archer C9(JP)_V3_230508' allow a network-adjacent unauthenticated attacker to execute arbitrary OS commands.
CVE-2023-36489 1Tp Link 3Tl Wr802n Firmware Tl Wr841n FirmwareTl Wr902ac Firmware Jun 17, 2026 Sep 6, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Multiple TP-LINK products allow a network-adjacent unauthenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: TL-WR802N firmware versions prior to 'TL-WR802N(JP)_V4_221008', TL-...Show more Multiple TP-LINK products allow a network-adjacent unauthenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: TL-WR802N firmware versions prior to 'TL-WR802N(JP)_V4_221008', TL-WR841N firmware versions prior to 'TL-WR841N(JP)_V14_230506', and TL-WR902AC firmware versions prior to 'TL-WR902AC(JP)_V3_230506'.Show less
CVE-2023-31188 1Tp Link 2Archer C50 V3 Firmware Archer C55 Firmware Jun 17, 2026 Sep 6, 2023 N/A· v4 8.0 HIGH· v3 N/A· v2 Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer C50 firmware versions prior to 'Archer C50(JP)_V3_230505', Arc...Show more Multiple TP-LINK products allow a network-adjacent authenticated attacker to execute arbitrary OS commands. Affected products/versions are as follows: Archer C50 firmware versions prior to 'Archer C50(JP)_V3_230505', Archer C55 firmware versions prior to 'Archer C55(JP)_V1_230506', and Archer C20 firmware versions prior to 'Archer C20(JP)_V1_230616'.Show less
CVE-2023-39362 2Cacti Fedoraproject 2Cacti Fedora Jun 17, 2026 Sep 5, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 Cacti is an open source operational monitoring and fault management framework. In Cacti 1.2.24, under certain conditions, an authenticated privileged user, can use a malicious string in the SNMP options of a Device, perf...Show more Cacti is an open source operational monitoring and fault management framework. In Cacti 1.2.24, under certain conditions, an authenticated privileged user, can use a malicious string in the SNMP options of a Device, performing command injection and obtaining remote code execution on the underlying server. The `lib/snmp.php` file has a set of functions, with similar behavior, that accept in input some variables and place them into an `exec` call without a proper escape or validation. This issue has been addressed in version 1.2.25. Users are advised to upgrade. There are no known workarounds for this vulnerability.Show less
CVE-2015-2201 2Arubanetworks Hp 2Airwave Airwave Nov 21, 2024 Sep 5, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7 allows VisualRF remote OS command execution and file disclosure by administrative users.
CVE-2023-4711 1Dlink 1Dar 8000 10 Firmware Jun 17, 2026 Sep 1, 2023 N/A· v4 8.1 HIGH· v3 4.6 MEDIUM· v2 A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230819. Affected by this issue is some unknown functionality of the file /log/decodmail.php. The manipulation of the argumen...Show more A vulnerability, which was classified as critical, has been found in D-Link DAR-8000-10 up to 20230819. Affected by this issue is some unknown functionality of the file /log/decodmail.php. The manipulation of the argument file leads to os command injection. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. VDB-238574 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2023-40582 1Find Exec Project 1Find Exec Jun 17, 2026 Aug 30, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 find-exec is a utility to discover available shell commands. Versions prior to 1.0.3 did not properly escape user input and are vulnerable to Command Injection via an attacker controlled parameter. As a result, attackers...Show more find-exec is a utility to discover available shell commands. Versions prior to 1.0.3 did not properly escape user input and are vulnerable to Command Injection via an attacker controlled parameter. As a result, attackers may run malicious shell commands in the context of the running process. This issue has been addressed in version 1.0.3. users are advised to upgrade. Users unable to upgrade should ensure that all input passed to find-exec comes from a trusted source.Show less
CVE-2023-40839 1Tenda 1Ac6 Firmware Jun 17, 2026 Aug 30, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin function 'sub_ADF3C' contains a command execution vulnerability. In the "formSetIptv" function, obtaining the "list" and "vlanId" fields, unfiltered passing these two fi...Show more Tenda AC6 US_AC6V1.0BR_V15.03.05.16_multi_TD01.bin function 'sub_ADF3C' contains a command execution vulnerability. In the "formSetIptv" function, obtaining the "list" and "vlanId" fields, unfiltered passing these two fields as parameters to the "sub_ADF3C" function to execute commands.Show less

Previous 1...141142143...299 Next