Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,964)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-28811 1Gavazziautomation 2Cpy Car Park Server Uwp 3.0 Monitoring Gateway And Controller Firmware Nov 21, 2024 Sep 28, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could utilize an improper input validation on an API-submitted parameter to execute arbitrary OS co...Show more In Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 a remote, unauthenticated attacker could utilize an improper input validation on an API-submitted parameter to execute arbitrary OS commands.Show less
CVE-2022-40785 1Mipcm 1Mipc Camera Firmware May 22, 2025 Sep 26, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Unsanitized input when setting a locale file leads to shell injection in mIPC camera firmware 5.3.1.2003161406. This allows an attacker to gain remote code execution on cameras running the firmware when a victim logs int...Show more Unsanitized input when setting a locale file leads to shell injection in mIPC camera firmware 5.3.1.2003161406. This allows an attacker to gain remote code execution on cameras running the firmware when a victim logs into a specially crafted mobile app.Show less
CVE-2022-39224 1Ruby Arr Pm Project 1Ruby Arr Pm Nov 21, 2024 Sep 21, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Arr-pm is an RPM reader/writer library written in Ruby. Versions prior to 0.0.12 are subject to OS command injection resulting in shell execution if the RPM contains a malicious "payload compressor" field. This vulnerabi...Show more Arr-pm is an RPM reader/writer library written in Ruby. Versions prior to 0.0.12 are subject to OS command injection resulting in shell execution if the RPM contains a malicious "payload compressor" field. This vulnerability impacts the `extract` and `files` methods of the `RPM::File` class of this library. Version 0.0.12 patches these issues. A workaround for this issue is to ensure any RPMs being processed contain valid/known payload compressor values such as gzip, bzip2, xz, zstd, and lzma. The payload compressor field in an rpm can be checked by using the rpm command line tool.Show less
CVE-2022-37882 1Arubanetworks 1Clearpass Policy Manager May 28, 2025 Sep 20, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute ar...Show more Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba ClearPass Policy Manager version(s): 6.10.x: 6.10.6 and below; 6.9.x: 6.9.11 and below. Aruba has released upgrades for Aruba ClearPass Policy Manager that address these security vulnerabilities.Show less
CVE-2022-37880 1Arubanetworks 1Clearpass Policy Manager May 28, 2025 Sep 20, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute ar...Show more Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba ClearPass Policy Manager version(s): 6.10.x: 6.10.6 and below; 6.9.x: 6.9.11 and below. Aruba has released upgrades for Aruba ClearPass Policy Manager that address these security vulnerabilities.Show less
CVE-2022-37878 1Arubanetworks 1Clearpass Policy Manager May 28, 2025 Sep 20, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute ar...Show more Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise in Aruba ClearPass Policy Manager version(s): 6.10.x: 6.10.6 and below; 6.9.x: 6.9.11 and below. Aruba has released upgrades for Aruba ClearPass Policy Manager that address these security vulnerabilities.Show less
CVE-2022-38828 1Totolink 1T6 Firmware Nov 21, 2024 Sep 16, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TOTOLINK T6 V4.1.5cu.709_B20210518 is vulnerable to command injection via cstecgi.cgi
CVE-2022-38826 1Totolink 1T6 Firmware Nov 21, 2024 Sep 16, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In TOTOLINK T6 V4.1.5cu.709_B20210518, there is an execute arbitrary command in cstecgi.cgi.
CVE-2022-38535 1Totolink 1A720r Firmware Nov 21, 2024 Sep 15, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 TOTOLINK-720R v4.1.5cu.374 was discovered to contain a remote code execution (RCE) vulnerability via the setTracerouteCfg function.
CVE-2022-38534 1Totolink 1A720r Firmware Nov 21, 2024 Sep 15, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 TOTOLINK-720R v4.1.5cu.374 was discovered to contain a remote code execution (RCE) vulnerability via the setdiagnosicfg function.
CVE-2022-38308 1Totolink 1A7000ru Firmware Nov 21, 2024 Sep 14, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TOTOLink A700RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the lang parameter in the function cstesystem. This vulnerability allows attackers to execute arbitrary commands via a...Show more TOTOLink A700RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the lang parameter in the function cstesystem. This vulnerability allows attackers to execute arbitrary commands via a crafted payload.Show less
CVE-2022-39819 1Nokia 11350 Optical Management System Nov 21, 2024 Sep 13, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 In NOKIA 1350 OMS R14.2, multiple OS Command Injection vulnerabilities occurs. This allows authenticated users to execute commands on the operating system.
CVE-2022-39815 1Nokia 11350 Optical Management System Nov 21, 2024 Sep 13, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In NOKIA 1350 OMS R14.2, multiple OS Command Injection vulnerabilities occurs. This vulnerability allow unauthenticated users to execute commands on the operating system.
CVE-2022-36779 2Advice Proscend 9Icr 111wg Firmware M301 G FirmwareM301 Gw Firmware+6 more Nov 21, 2024 Sep 13, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 PROSCEND - PROSCEND / ADVICE .Ltd - G/5G Industrial Cellular Router (with GPS)4 Unauthenticated OS Command Injection Proscend M330-w / M33-W5 / M350-5G / M350-W5G / M350-6 / M350-W6 / M301-G / M301-GW ADVICE ICR 111WG /...Show more PROSCEND - PROSCEND / ADVICE .Ltd - G/5G Industrial Cellular Router (with GPS)4 Unauthenticated OS Command Injection Proscend M330-w / M33-W5 / M350-5G / M350-W5G / M350-6 / M350-W6 / M301-G / M301-GW ADVICE ICR 111WG / https://www.proscend.com/en/category/industrial-Cellular-Router/industrial-Cellular-Router.html https://cdn.shopify.com/s/files/1/0036/9413/3297/files/ADVICE_Industrial_4G_LTE_Cellular_Router_ICR111WG.pdf?v=1620814301Show less
CVE-2022-37860 1Tp Link 1M7350 Firmware Nov 21, 2024 Sep 12, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The web configuration interface of the TP-Link M7350 V3 with firmware version 190531 is affected by a pre-authentication command injection vulnerability.
CVE-2022-3133 1Diagrams 1Drawio Nov 21, 2024 Sep 9, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 OS Command Injection in GitHub repository jgraph/drawio prior to 20.3.0.
CVE-2022-29061 1Fortinet 1Fortisoar Nov 21, 2024 Sep 9, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in Fortinet FortiSOAR before 7.2.1 allows an authenticated attacker to execute unauthorized code or com...Show more An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in Fortinet FortiSOAR before 7.2.1 allows an authenticated attacker to execute unauthorized code or commands via crafted HTTP GET requests.Show less
CVE-2022-30079 1Netgear 1R6200 Nov 21, 2024 Sep 8, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Command injection vulnerability was discovered in Netgear R6200 v2 firmware through R6200v2-V1.0.3.12 via binary /sbin/acos_service that could allow remote authenticated attackers the ability to modify values in the vuln...Show more Command injection vulnerability was discovered in Netgear R6200 v2 firmware through R6200v2-V1.0.3.12 via binary /sbin/acos_service that could allow remote authenticated attackers the ability to modify values in the vulnerable parameter.Show less
CVE-2022-38094 1Allied Telesis 1Centrecom Ar260s Firmware Nov 21, 2024 Sep 8, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 OS command injection vulnerability in the telnet function of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.
CVE-2022-35273 1Allied Telesis 1Centrecom Ar260s Firmware Nov 21, 2024 Sep 8, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 OS command injection vulnerability in GUI setting page of CentreCOM AR260S V2 firmware versions prior to Ver.3.3.7 allows a remote authenticated attacker to execute an arbitrary OS command.

Previous 1...169170171...299 Next