Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,964)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-30854 1Wwbn 1Avideo Jun 17, 2026 Apr 28, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 AVideo is an open source video platform. Prior to version 12.4, an OS Command Injection vulnerability in an authenticated endpoint `/plugin/CloneSite/cloneClient.json.php` allows attackers to achieve Remote Code Executio...Show more AVideo is an open source video platform. Prior to version 12.4, an OS Command Injection vulnerability in an authenticated endpoint `/plugin/CloneSite/cloneClient.json.php` allows attackers to achieve Remote Code Execution. This issue is fixed in version 12.4.Show less
CVE-2023-28528 1Ibm 2Aix Vios Jun 17, 2026 Apr 28, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the invscout command to execute arbitrary commands. IBM X-Force ID: 251207.
CVE-2023-29169 1Myscada 1Mypro Jun 17, 2026 Apr 27, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands.
CVE-2023-29150 1Myscada 1Mypro Jun 17, 2026 Apr 27, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands.
CVE-2023-28716 1Myscada 1Mypro Jun 17, 2026 Apr 27, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands.
CVE-2023-28400 1Myscada 1Mypro Jun 17, 2026 Apr 27, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands.
CVE-2023-28384 1Myscada 1Mypro Jun 17, 2026 Apr 27, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 mySCADA myPRO versions 8.26.0 and prior has parameters which an authenticated user could exploit to inject arbitrary operating system commands.
CVE-2023-25313 1Wwbn 1Avideo Jun 17, 2026 Apr 25, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 OS injection vulnerability in World Wide Broadcast Network AVideo version before 12.4, allows attackers to execute arbitrary code via the video link field to the Embed a video link feature.
CVE-2023-28771 1Zyxel 19Atp100 Firmware Atp100w FirmwareAtp200 Firmware+16 more Jun 17, 2026 Apr 25, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35, USG FLEX series firmware versions 4.60 through 5.35, and ATP series firmware...Show more Improper error message handling in Zyxel ZyWALL/USG series firmware versions 4.60 through 4.73, VPN series firmware versions 4.60 through 5.35, USG FLEX series firmware versions 4.60 through 5.35, and ATP series firmware versions 4.60 through 5.35, which could allow an unauthenticated attacker to execute some OS commands remotely by sending crafted packets to an affected device.Show less
CVE-2023-30628 1Kiwitcms 1Kiwi Tcms Jun 17, 2026 Apr 24, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Kiwi TCMS is an open source test management system. In kiwitcms/Kiwi v12.2 and prior and kiwitcms/enterprise v12.2 and prior, the `changelog.yml` workflow is vulnerable to command injection attacks because of using an un...Show more Kiwi TCMS is an open source test management system. In kiwitcms/Kiwi v12.2 and prior and kiwitcms/enterprise v12.2 and prior, the `changelog.yml` workflow is vulnerable to command injection attacks because of using an untrusted `github.head_ref` field. The `github.head_ref` value is an attacker-controlled value. Assigning the value to `zzz";echo${IFS}"hello";#` can lead to command injection. Since the permission is not restricted, the attacker has a write-access to the repository. Commit 834c86dfd1b2492ccad7ebbfd6304bfec895fed2 of the kiwitcms/Kiwi repository and commit e39f7e156fdaf6fec09a15ea6f4e8fec8cdbf751 of the kiwitcms/enterprise repository contain a fix for this issue.Show less
CVE-2023-27991 1Zyxel 19Atp100 Firmware Atp100w FirmwareAtp200 Firmware+16 more Jun 17, 2026 Apr 24, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 The post-authentication command injection vulnerability in the CLI command of Zyxel ATP series firmware versions 4.32 through 5.35, USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4....Show more The post-authentication command injection vulnerability in the CLI command of Zyxel ATP series firmware versions 4.32 through 5.35, USG FLEX series firmware versions 4.50 through 5.35, USG FLEX 50(W) firmware versions 4.16 through 5.35, USG20(W)-VPN firmware versions 4.16 through 5.35, and VPN series firmware versions 4.30 through 5.35, which could allow an authenticated attacker to execute some OS commands remotely.Show less
CVE-2023-25507 1Nvidia 1Bmc Jun 17, 2026 Apr 22, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 NVIDIA DGX-1 BMC contains a vulnerability in the SPX REST API, where an attacker with the appropriate level of authorization can inject arbitrary shell commands, which may lead to code execution, denial of service, infor...Show more NVIDIA DGX-1 BMC contains a vulnerability in the SPX REST API, where an attacker with the appropriate level of authorization can inject arbitrary shell commands, which may lead to code execution, denial of service, information disclosure, and data tampering.Show less
CVE-2023-30621 1Gipsy Project 1Gipsy Jun 17, 2026 Apr 21, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Gipsy is a multi-purpose discord bot which aim to be as modular and user-friendly as possible. In versions prior to 1.3 users can run command on the host machine with sudoer permission. The `!ping` command when provided...Show more Gipsy is a multi-purpose discord bot which aim to be as modular and user-friendly as possible. In versions prior to 1.3 users can run command on the host machine with sudoer permission. The `!ping` command when provided with an IP or hostname used to run a bash `ping <IP>` without verification that the IP or hostname was legitimate. This command was executed with root permissions and may lead to arbitrary command injection on the host server. Users are advised to upgrade. There are no known workarounds for this vulnerability.Show less
CVE-2023-2131 1Inea 1Me Rtu Firmware Jun 17, 2026 Apr 20, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Versions of INEA ME RTU firmware prior to 3.36 are vulnerable to OS command injection, which could allow an attacker to remotely execute arbitrary code.
CVE-2023-25759 1Uniguest 1Tripleplay Jun 17, 2026 Apr 19, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 OS Command Injection in TripleData Reporting Engine in Tripleplay Platform releases prior to Caveman 3.4.0 allows authenticated users to run unprivileged OS level commands via a crafted request payload.
CVE-2023-29412 1Schneider Electric 2Apc Easy Ups Online Monitoring Software Easy Ups Online Monitoring Software Jun 17, 2026 Apr 18, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause remote code execution when manipulating internal methods through Java RMI interface...Show more CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause remote code execution when manipulating internal methods through Java RMI interface.Show less
CVE-2023-25555 1Schneider Electric 1Struxureware Data Center Expert Jun 17, 2026 Apr 18, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could allow a user that knows the credentials to execute unprivileged shell co...Show more A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could allow a user that knows the credentials to execute unprivileged shell commands on the appliance over SSH. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior) Show less
CVE-2023-25554 1Schneider Electric 1Struxureware Data Center Expert Jun 17, 2026 Apr 18, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that allows a local privilege escalation on the appliance when a maliciously crafted Operatin...Show more A CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that allows a local privilege escalation on the appliance when a maliciously crafted Operating System command is entered on the device. Affected products: StruxureWare Data Center Expert (V7.9.2 and prior) Show less
CVE-2023-28983 1Juniper 1Junos Os Evolved Jun 17, 2026 Apr 17, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 An OS Command Injection vulnerability in gRPC Network Operations Interface (gNOI) server module of Juniper Networks Junos OS Evolved allows an authenticated, low privileged, network based attacker to inject shell command...Show more An OS Command Injection vulnerability in gRPC Network Operations Interface (gNOI) server module of Juniper Networks Junos OS Evolved allows an authenticated, low privileged, network based attacker to inject shell commands and execute code. This issue affects Juniper Networks Junos OS Evolved 21.4 version 21.4R1-EVO and later versions prior to 22.1R1-EVO.Show less
CVE-2021-33990 1Liferay 1Liferay Portal Jun 17, 2026 Apr 16, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Liferay Portal 6.2.5 allows Command=FileUpload&Type=File&CurrentFolder=/ requests when frmfolders.html exists. NOTE: The vendor disputes this issue because the exploit reference link only shows frmfolders.html is accessi...Show more Liferay Portal 6.2.5 allows Command=FileUpload&Type=File&CurrentFolder=/ requests when frmfolders.html exists. NOTE: The vendor disputes this issue because the exploit reference link only shows frmfolders.html is accessible and does not demonstrate how an unauthorized user can upload a file.Show less

Previous 1...152153154...299 Next