Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,964)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-28575 1Totolink 1A7100ru Firmware Nov 21, 2024 May 5, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 It is found that there is a command injection vulnerability in the setopenvpnclientcfg interface in TOTOlink A7100RU (v7.4cu.2313_b20191024) router, which allows attackers to execute arbitrary commands through a carefull...Show more It is found that there is a command injection vulnerability in the setopenvpnclientcfg interface in TOTOlink A7100RU (v7.4cu.2313_b20191024) router, which allows attackers to execute arbitrary commands through a carefully constructed payloadShow less
CVE-2022-29592 1Tenda 1Tx9 Pro Firmware Nov 21, 2024 May 5, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Tenda TX9 Pro 22.03.02.10 devices allow OS command injection via set_route (called by doSystemCmd_route).
CVE-2021-41739 1Articatech 1Artica Proxy Jan 22, 2026 May 5, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A OS Command Injection vulnerability was discovered in Artica Proxy 4.30.000000. Attackers can execute OS commands in cyrus.events.php with GET param logs and POST param rp.
CVE-2022-20801 1Cisco 4Rv340 Firmware Rv340w FirmwareRv345 Firmware+1 more Nov 21, 2024 May 4, 2022 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and RV345 Routers could allow an authenticated, remote attacker to inject and execute arbitrary commands on the underlying oper...Show more Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and RV345 Routers could allow an authenticated, remote attacker to inject and execute arbitrary commands on the underlying operating system of an affected device. These vulnerabilities are due to insufficient validation of user-supplied input. An attacker could exploit these vulnerabilities by sending malicious input to an affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying Linux operating system of the affected device. To exploit these vulnerabilities, an attacker would need to have valid Administrator credentials on the affected device.Show less
CVE-2022-20799 1Cisco 4Rv340 Firmware Rv340w FirmwareRv345 Firmware+1 more Nov 21, 2024 May 4, 2022 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and RV345 Routers could allow an authenticated, remote attacker to inject and execute arbitrary commands on the underlying oper...Show more Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and RV345 Routers could allow an authenticated, remote attacker to inject and execute arbitrary commands on the underlying operating system of an affected device. These vulnerabilities are due to insufficient validation of user-supplied input. An attacker could exploit these vulnerabilities by sending malicious input to an affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying Linux operating system of the affected device. To exploit these vulnerabilities, an attacker would need to have valid Administrator credentials on the affected device.Show less
CVE-2022-28557 1Tenda 1Ac15 Firmware Nov 21, 2024 May 4, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 There is a command injection vulnerability at the /goform/setsambacfg interface of Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin device web, which can also cooperate with CVE-2021-44971 to cause unconditional arb...Show more There is a command injection vulnerability at the /goform/setsambacfg interface of Tenda AC15 US_AC15V1.0BR_V15.03.05.20_multi_TDE01.bin device web, which can also cooperate with CVE-2021-44971 to cause unconditional arbitrary command executionShow less
CVE-2022-27903 1Eve Ng 1Eve Ng Nov 21, 2024 May 4, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 An OS Command Injection vulnerability in the configuration parser of Eve-NG Professional through 4.0.1-65 and Eve-NG Community through 2.0.3-112 allows a remote authenticated attacker to execute commands as root by editi...Show more An OS Command Injection vulnerability in the configuration parser of Eve-NG Professional through 4.0.1-65 and Eve-NG Community through 2.0.3-112 allows a remote authenticated attacker to execute commands as root by editing virtualization command parameters of imported UNL files.Show less
CVE-2022-28055 1Fusionpbx 1Fusionpbx Nov 21, 2024 May 4, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Fusionpbx v4.4 and below contains a command injection vulnerability via the download email logs function.
CVE-2021-43164 1Ruijienetworks 1Reyeeos Nov 21, 2024 May 4, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the updateVersion function in /cgi-bin/luci/api/wireless.
CVE-2022-1292 6Debian FedoraprojectNetapp+3 more 35A250 Firmware A700s FirmwareActive Iq Unified Manager+32 more Aug 13, 2025 May 3, 2022 N/A· v4 7.3 HIGH· v3 10.0 HIGH· v2 The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating sys...Show more The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.3 (Affected 3.0.0,3.0.1,3.0.2). Fixed in OpenSSL 1.1.1o (Affected 1.1.1-1.1.1n). Fixed in OpenSSL 1.0.2ze (Affected 1.0.2-1.0.2zd).Show less
CVE-2021-42165 1Mitrastar 1Gpt 2541gnac N1 Firmware Nov 21, 2024 May 3, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 MitraStar GPT-2541GNAC-N1 (HGU) 100VNZ0b33 devices allow remote authenticated users to obtain root access by executing command "deviceinfo show file &&/bin/bash" because of incorrect sanitization of parameter "path".
CVE-2022-28573 1Dlink 1Dir 823 Pro Firmware Nov 21, 2024 May 2, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNTPserverSeting. This vulnerability allows attackers to execute arbitrary commands via the system_time_timezone par...Show more D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the function SetNTPserverSeting. This vulnerability allows attackers to execute arbitrary commands via the system_time_timezone parameter.Show less
CVE-2022-28572 1Tenda 2Ax1803 Firmware Ax1806 Firmware Nov 21, 2024 May 2, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability in `SetIPv6Status` function
CVE-2022-28571 1Dlink 1Dir 882 Firmware Nov 21, 2024 May 2, 2022 N/A· v4 9.8 CRITICAL· v3 5.8 MEDIUM· v2 D-link 882 DIR882A1_FW130B06 was discovered to contain a command injection vulnerability in`/usr/bin/cli.
CVE-2022-29937 1Usu 1Oracle Optimization Nov 21, 2024 Apr 29, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 USU Oracle Optimization before 5.17.5 allows authenticated DataCollection users to achieve agent root access because some common OS commands are blocked but (for example) an OS command for base64 decoding is not blocked....Show more USU Oracle Optimization before 5.17.5 allows authenticated DataCollection users to achieve agent root access because some common OS commands are blocked but (for example) an OS command for base64 decoding is not blocked. NOTE: this is not an Oracle Corporation product.Show less
CVE-2021-34602 1Bender 2Cc612 Firmware Icc15xx Firmware Nov 21, 2024 Apr 27, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 In Bender/ebee Charge Controllers in multiple versions are prone to Command injection via Web interface. An authenticated attacker could enter shell commands into some input fields that are executed with root privileges.
CVE-2021-46422 1Telesquare 1Sdt Cs3b1 Firmware Nov 21, 2024 Apr 27, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Telesquare SDT-CW3B1 1.1.0 is affected by an OS command injection vulnerability that allows a remote attacker to execute OS commands without any authentication.
CVE-2021-46441 1Dlink 1Dir 825 Firmware Nov 21, 2024 Apr 27, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 In the "webupg" binary of D-Link DIR-825 G1, because of the lack of parameter verification, attackers can use "cmd" parameters to execute arbitrary system commands after obtaining authorization.
CVE-2022-1440 1Git Interface Project 1Git Interface Nov 21, 2024 Apr 22, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Command Injection vulnerability in git-interface@2.1.1 in GitHub repository yarkeev/git-interface prior to 2.1.2. If both are provided by user input, then the use of a `--upload-pack` command-line argument feature of git...Show more Command Injection vulnerability in git-interface@2.1.1 in GitHub repository yarkeev/git-interface prior to 2.1.2. If both are provided by user input, then the use of a `--upload-pack` command-line argument feature of git is also supported for `git clone`, which would then allow for any operating system command to be spawned by the attacker.Show less
CVE-2022-28810 1Zohocorp 1Manageengine Adselfservice Plus Oct 31, 2025 Apr 18, 2022 N/A· v4 6.8 MEDIUM· v3 7.1 HIGH· v2 Zoho ManageEngine ADSelfService Plus before build 6122 allows a remote authenticated administrator to execute arbitrary operating OS commands as SYSTEM via the policy custom script feature. Due to the use of a default ad...Show more Zoho ManageEngine ADSelfService Plus before build 6122 allows a remote authenticated administrator to execute arbitrary operating OS commands as SYSTEM via the policy custom script feature. Due to the use of a default administrator password, attackers may be able to abuse this functionality with minimal effort. Additionally, a remote and partially authenticated attacker may be able to inject arbitrary commands into the custom script due to an unsanitized password field.Show less

Previous 1...182183184...299 Next