Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,964)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-34214 1Moxa 2Tn 4900 Firmware Tn 5900 Firmware Jun 17, 2026 Aug 17, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. This vulnerability stems from insufficient input validation in...Show more TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. This vulnerability stems from insufficient input validation in the certificate-generation function, which could potentially allow malicious users to execute remote code on affected devices.Show less
CVE-2023-34213 1Moxa 1Tn 5900 Firmware Jun 17, 2026 Aug 17, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TN-5900 Series firmware versions v3.3 and prior are vulnerable to command-injection vulnerability. This vulnerability stems from insufficient input validation and improper authentication in the key-generation function, w...Show more TN-5900 Series firmware versions v3.3 and prior are vulnerable to command-injection vulnerability. This vulnerability stems from insufficient input validation and improper authentication in the key-generation function, which could potentially allow malicious users to execute remote code on affected devices.Show less
CVE-2023-33239 1Moxa 2Tn 4900 Firmware Tn 5900 Firmware Jun 17, 2026 Aug 17, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command injection vulnerability. This vulnerability stems from insufficient input validation in...Show more TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command injection vulnerability. This vulnerability stems from insufficient input validation in the key-generation function, which could potentially allow malicious users to execute remote code on affected devices.Show less
CVE-2023-33238 1Moxa 2Tn 4900 Firmware Tn 5900 Firmware Jun 17, 2026 Aug 17, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command injection vulnerability. This vulnerability stems from inadequate input validation in th...Show more TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command injection vulnerability. This vulnerability stems from inadequate input validation in the certificate management function, which could potentially allow malicious users to execute remote code on affected devices.Show less
CVE-2023-35893 1Ibm 1Security Guardium Jun 17, 2026 Aug 16, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 IBM Security Guardium 10.6, 11.3, 11.4, and 11.5 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 258824.
CVE-2023-20017 1Cisco 1Intersight Private Virtual Appliance Jun 17, 2026 Aug 16, 2023 N/A· v4 9.1 CRITICAL· v3 N/A· v2 Multiple vulnerabilities in Cisco Intersight Private Virtual Appliance could allow an authenticated, remote attacker to execute arbitrary commands using root-level privileges. The attacker would need to have Administrato...Show more Multiple vulnerabilities in Cisco Intersight Private Virtual Appliance could allow an authenticated, remote attacker to execute arbitrary commands using root-level privileges. The attacker would need to have Administrator privileges on the affected device to exploit these vulnerabilities. These vulnerabilities are due to insufficient input validation when extracting uploaded software packages. An attacker could exploit these vulnerabilities by authenticating to an affected device and uploading a crafted software package. A successful exploit could allow the attacker to execute commands on the underlying operating system with root-level privileges.Show less
CVE-2023-20013 1Cisco 1Intersight Private Virtual Appliance Jun 17, 2026 Aug 16, 2023 N/A· v4 9.1 CRITICAL· v3 N/A· v2 Multiple vulnerabilities in Cisco Intersight Private Virtual Appliance could allow an authenticated, remote attacker to execute arbitrary commands using root-level privileges. The attacker would need to have Administrato...Show more Multiple vulnerabilities in Cisco Intersight Private Virtual Appliance could allow an authenticated, remote attacker to execute arbitrary commands using root-level privileges. The attacker would need to have Administrator privileges on the affected device to exploit these vulnerabilities. These vulnerabilities are due to insufficient input validation when extracting uploaded software packages. An attacker could exploit these vulnerabilities by authenticating to an affected device and uploading a crafted software package. A successful exploit could allow the attacker to execute commands on the underlying operating system with root-level privileges.Show less
CVE-2023-33013 1Zyxel 1Nbg6604 Firmware Jun 17, 2026 Aug 14, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A post-authentication command injection vulnerability in the NTP feature of Zyxel NBG6604 firmware version V1.01(ABIR.1)C0 could allow an authenticated attacker to execute some OS commands remotely by sending a crafted H...Show more A post-authentication command injection vulnerability in the NTP feature of Zyxel NBG6604 firmware version V1.01(ABIR.1)C0 could allow an authenticated attacker to execute some OS commands remotely by sending a crafted HTTP request.Show less
CVE-2023-3267 1Cyberpower 1Powerpanel Server Jun 17, 2026 Aug 14, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 When adding a remote backup location, an authenticated user can pass arbitrary OS commands through the username field. The username is passed without sanitization into CMD running as NT/Authority System. An authenticated...Show more When adding a remote backup location, an authenticated user can pass arbitrary OS commands through the username field. The username is passed without sanitization into CMD running as NT/Authority System. An authenticated attacker can leverage this vulnerability to execute arbitrary code with system-level access to the CyberPower PowerPanel Enterprise server.Show less
CVE-2023-3261 2Cyberpower Dataprobe 23Iboot Pdu4 C20 Firmware Iboot Pdu4 N20 FirmwareIboot Pdu4a C10 Firmware+20 more Jun 17, 2026 Aug 14, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier contains a buffer overflow vulnerability in the librta.so.0.0.0 library.Successful exploitation could cause denial of service or unexpected behavi...Show more The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier contains a buffer overflow vulnerability in the librta.so.0.0.0 library.Successful exploitation could cause denial of service or unexpected behavior with respect to all interactions relying on the targeted vulnerable binary, including the ability to log in via the web server.Show less
CVE-2023-3260 2Cyberpower Dataprobe 23Iboot Pdu4 C20 Firmware Iboot Pdu4 N20 FirmwareIboot Pdu4a C10 Firmware+20 more Jun 17, 2026 Aug 14, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier is vulnerable to command injection via the `user-name` URL parameter. An authenticated malicious agent can exploit this vulnerability to execute a...Show more The Dataprobe iBoot PDU running firmware version 1.43.03312023 or earlier is vulnerable to command injection via the `user-name` URL parameter. An authenticated malicious agent can exploit this vulnerability to execute arbitrary command on the underlying Linux operating system.Show less
CVE-2023-40253 1Genians 2Genian Nac Genian Ztna Jun 17, 2026 Aug 11, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Improper Authentication vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Authentication Abuse.This issue affects Genian NAC V4.0: from V4.0.0 th...Show more Improper Authentication vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Authentication Abuse.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42 (Revision 117460); Genian NAC Suite V5.0: from V5.0.0 through V5.0.54; Genian ZTNA: from V6.0.0 through V6.0.15. Show less
CVE-2023-31209 2Checkmk Tribe29 2Checkmk Checkmk Jun 17, 2026 Aug 10, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Improper neutralization of active check command arguments in Checkmk < 2.1.0p32, < 2.0.0p38, < 2.2.0p4 leads to arbitrary command execution for authenticated users.
CVE-2022-48604 1Sciencelogic 1Sl1 Jun 17, 2026 Aug 9, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A SQL injection vulnerability exists in the “logging export” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary...Show more A SQL injection vulnerability exists in the “logging export” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database.Show less
CVE-2022-48603 1Sciencelogic 1Sl1 Jun 17, 2026 Aug 9, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A SQL injection vulnerability exists in the “message viewer iframe” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arb...Show more A SQL injection vulnerability exists in the “message viewer iframe” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database.Show less
CVE-2022-48602 1Sciencelogic 1Sl1 Jun 17, 2026 Aug 9, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A SQL injection vulnerability exists in the “message viewer print” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbi...Show more A SQL injection vulnerability exists in the “message viewer print” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database.Show less
CVE-2022-48601 1Sciencelogic 1Sl1 Jun 17, 2026 Aug 9, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A SQL injection vulnerability exists in the “network print report” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbi...Show more A SQL injection vulnerability exists in the “network print report” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database.Show less
CVE-2022-48600 1Sciencelogic 1Sl1 Jun 17, 2026 Aug 9, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A SQL injection vulnerability exists in the “notes view” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL...Show more A SQL injection vulnerability exists in the “notes view” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database.Show less
CVE-2022-48599 1Sciencelogic 1Sl1 Jun 17, 2026 Aug 9, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A SQL injection vulnerability exists in the “reporter events type” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbi...Show more A SQL injection vulnerability exists in the “reporter events type” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database.Show less
CVE-2022-48598 1Sciencelogic 1Sl1 Jun 17, 2026 Aug 9, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A SQL injection vulnerability exists in the “reporter events type date” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of...Show more A SQL injection vulnerability exists in the “reporter events type date” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database.Show less

Previous 1...143144145...299 Next