Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,964)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-36460 1Totolink 1A3700r Firmware Nov 21, 2024 Aug 25, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection vulnerability via the FileName parameter in the function UploadFirmwareFile.
CVE-2022-36459 1Totolink 1A3700r Firmware Nov 21, 2024 Aug 25, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection vulnerability via the host_time parameter in the function NTPSyncWithHost.
CVE-2022-36458 1Totolink 1A3700r Firmware Nov 21, 2024 Aug 25, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection vulnerability via the command parameter in the function setTracerouteCfg.
CVE-2022-36456 1Totolink 1A720r Firmware Nov 21, 2024 Aug 25, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 TOTOLink A720R V4.1.5cu.532_B20210610 was discovered to contain a command injection vulnerability via the username parameter in /cstecgi.cgi.
CVE-2022-36804 1Atlassian 1Bitbucket Oct 24, 2025 Aug 25, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Multiple API endpoints in Atlassian Bitbucket Server and Data Center 7.0.0 before version 7.6.17, from version 7.7.0 before version 7.17.10, from version 7.18.0 before version 7.21.4, from version 8.0.0 before version 8....Show more Multiple API endpoints in Atlassian Bitbucket Server and Data Center 7.0.0 before version 7.6.17, from version 7.7.0 before version 7.17.10, from version 7.18.0 before version 7.21.4, from version 8.0.0 before version 8.0.3, from version 8.1.0 before version 8.1.3, and from version 8.2.0 before version 8.2.2, and from version 8.3.0 before 8.3.1 allows remote attackers with read permissions to a public or private Bitbucket repository to execute arbitrary code by sending a malicious HTTP request. This vulnerability was reported via our Bug Bounty Program by TheGrandPew.Show less
CVE-2022-2234 1Myscada 1Mypro Nov 21, 2024 Aug 24, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 An authenticated mySCADA myPRO 8.26.0 user may be able to modify parameters to run commands directly in the operating system.
CVE-2022-36633 1Goteleport 1Teleport Nov 21, 2024 Aug 24, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Teleport 9.3.6 is vulnerable to Command injection leading to Remote Code Execution. An attacker can craft a malicious ssh agent installation link by URL encoding a bash escape with carriage return line feed. This url enc...Show more Teleport 9.3.6 is vulnerable to Command injection leading to Remote Code Execution. An attacker can craft a malicious ssh agent installation link by URL encoding a bash escape with carriage return line feed. This url encoded payload can be used in place of a token and sent to a user in a social engineering attack. This is fully unauthenticated attack utilizing the trusted teleport server to deliver the payload.Show less
CVE-2022-38132 1Linksys 1Mr8300 Firmware Nov 21, 2024 Aug 24, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Command injection vulnerability in Linksys MR8300 router while Registration to DDNS Service. By specifying username and password, an attacker connected to the router's web interface can execute arbitrary OS commands. The...Show more Command injection vulnerability in Linksys MR8300 router while Registration to DDNS Service. By specifying username and password, an attacker connected to the router's web interface can execute arbitrary OS commands. The username and password fields are not sanitized correctly and are used as URL construction arguments, allowing URL redirection to an arbitrary server, downloading an arbitrary script file, and eventually executing the file in the device. This issue affects: Linksys MR8300 Router 1.0.Show less
CVE-2022-1513 1Lenovo 1Pcmanager Nov 21, 2024 Aug 23, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 A potential vulnerability was reported in Lenovo PCManager prior to version 5.0.10.4191 that may allow code execution when visiting a specially crafted website.
CVE-2021-42232 1Tp Link 1Archer A7 Firmware Nov 21, 2024 Aug 23, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TP-Link Archer A7 Archer A7(US)_V5_210519 is affected by a command injection vulnerability in /usr/bin/tddp. The vulnerability is caused by the program taking part of the received data packet as part of the command. This...Show more TP-Link Archer A7 Archer A7(US)_V5_210519 is affected by a command injection vulnerability in /usr/bin/tddp. The vulnerability is caused by the program taking part of the received data packet as part of the command. This will cause an attacker to execute arbitrary commands on the router.Show less
CVE-2022-32572 1Wwbn 1Avideo Nov 21, 2024 Aug 22, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 An os command injection vulnerability exists in the aVideoEncoder wget functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to arbitrary command execution. An attack...Show more An os command injection vulnerability exists in the aVideoEncoder wget functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can send an HTTP request to trigger this vulnerability.Show less
CVE-2022-30534 1Wwbn 1Avideo Nov 21, 2024 Aug 22, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 An OS command injection vulnerability exists in the aVideoEncoder chunkfile functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to arbitrary command execution. An a...Show more An OS command injection vulnerability exists in the aVideoEncoder chunkfile functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can send an HTTP request to trigger this vulnerability.Show less
CVE-2022-35976 1Weave 1Gitops Tools Nov 21, 2024 Aug 18, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The GitOps Tools Extension for VSCode relies on kubeconfigs in order to communicate with Kubernetes clusters. A specially crafted kubeconfig leads to arbitrary code execution on behalf of the user running VSCode. Users r...Show more The GitOps Tools Extension for VSCode relies on kubeconfigs in order to communicate with Kubernetes clusters. A specially crafted kubeconfig leads to arbitrary code execution on behalf of the user running VSCode. Users relying on kubeconfigs that are generated or altered by other processes or users are affected by this issue. Please note that the vulnerability is specific to this extension, and the same kubeconfig would not result in arbitrary code execution when used with kubectl. Using only trust-worthy kubeconfigs is a safe mitigation. However, updating to the latest version of the extension is still highly recommended.Show less
CVE-2022-37061 1Flir 1Flir Ax8 Firmware Oct 17, 2025 Aug 18, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 All FLIR AX8 thermal sensor cameras version up to and including 1.46.16 are vulnerable to Remote Command Injection. This can be exploited to inject and execute arbitrary shell commands as the root user through the id HTT...Show more All FLIR AX8 thermal sensor cameras version up to and including 1.46.16 are vulnerable to Remote Command Injection. This can be exploited to inject and execute arbitrary shell commands as the root user through the id HTTP POST parameter in the res.php endpoint. A successful exploit could allow the attacker to execute arbitrary commands on the underlying operating system with the root privileges. NOTE: The vendor has stated that with the introduction of firmware version 1.49.16 (Jan 2023) the FLIR AX8 should no longer be affected by the vulnerability reported. Latest firmware version (as of Oct 2025, was released Jun 2024) is 1.55.16.Show less
CVE-2022-35975 1Weave 1Gitops Tools Nov 21, 2024 Aug 18, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The GitOps Tools Extension for VSCode can make it easier to manage Flux objects. A specially crafted Flux object may allow for remote code execution in the machine running the extension, in the context of the user that i...Show more The GitOps Tools Extension for VSCode can make it easier to manage Flux objects. A specially crafted Flux object may allow for remote code execution in the machine running the extension, in the context of the user that is running VSCode. Users using the VSCode extension to manage clusters that are shared amongst other users are affected by this issue. The only safe mitigation is to update to the latest version of the extension.Show less
CVE-2022-1410 1Device42 1Cmdb Nov 21, 2024 Aug 17, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 OS Command Injection vulnerability in the db_optimize component of Device42 Asset Management Appliance allows an authenticated attacker to execute remote code on the device. This issue affects: Device42 CMDB version 18.0...Show more OS Command Injection vulnerability in the db_optimize component of Device42 Asset Management Appliance allows an authenticated attacker to execute remote code on the device. This issue affects: Device42 CMDB version 18.01.00 and prior versions.Show less
CVE-2022-36273 1Tenda 1Ac9 Firmware Nov 21, 2024 Aug 16, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda AC9 V15.03.2.21_cn is vulnerable to command injection via goform/SetSysTimeCfg.
CVE-2022-36381 1Nintendo 1Wi Fi Network Adaptor Wap 001 Firmware Nov 21, 2024 Aug 16, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 OS command injection vulnerability in Nintendo Wi-Fi Network Adaptor WAP-001 All versions allows an attacker with an administrative privilege to execute arbitrary OS commands via unspecified vectors.
CVE-2022-36309 1Airspan 1Airvelocity 1500 Firmware Nov 21, 2024 Aug 16, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Airspan AirVelocity 1500 software versions prior to 15.18.00.2511 have a root command injection vulnerability in the ActiveBank parameter of the recoverySubmit.cgi script running on the eNodeB's web management UI. This i...Show more Airspan AirVelocity 1500 software versions prior to 15.18.00.2511 have a root command injection vulnerability in the ActiveBank parameter of the recoverySubmit.cgi script running on the eNodeB's web management UI. This issue may affect other AirVelocity and AirSpeed models.Show less
CVE-2022-2314 1Vr Calendar Project 1Vr Calendar Nov 21, 2024 Aug 15, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The VR Calendar WordPress plugin through 2.3.2 lets any user execute arbitrary PHP functions on the site.

Previous 1...172173174...299 Next