Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,964)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-25597 1Asus 1Rt Ac86u Firmware Nov 21, 2024 Apr 7, 2022 N/A· v4 8.8 HIGH· v3 5.8 MEDIUM· v2 ASUS RT-AC86U’s LPD service has insufficient filtering for special characters in the user request, which allows an unauthenticated LAN attacker to perform command injection attack, execute arbitrary commands and disrupt...Show more ASUS RT-AC86U’s LPD service has insufficient filtering for special characters in the user request, which allows an unauthenticated LAN attacker to perform command injection attack, execute arbitrary commands and disrupt or terminate service.Show less
CVE-2022-23900 1Wavlink 1Wl Wn531p3 Firmware Nov 21, 2024 Apr 7, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A command injection vulnerability in the API of the Wavlink WL-WN531P3 router, version M31G3.V5030.201204, allows an attacker to achieve unauthorized remote code execution via a malicious POST request through /cgi-bin/ad...Show more A command injection vulnerability in the API of the Wavlink WL-WN531P3 router, version M31G3.V5030.201204, allows an attacker to achieve unauthorized remote code execution via a malicious POST request through /cgi-bin/adm.cgi.Show less
CVE-2020-27373 1Drtrustusa 1Icheck Connect Bp Monitor Bp Testing 118 Firmware Nov 21, 2024 Apr 7, 2022 N/A· v4 8.8 HIGH· v3 8.3 HIGH· v2 Dr Trust USA iCheck Connect BP Monitor BP Testing 118 1.2.1 is vulnerable to Plain text command over BLE.
CVE-2021-26116 1Fortinet 1Fortiauthenticator Nov 21, 2024 Apr 6, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 An improper neutralization of special elements used in an OS command vulnerability in the command line interpreter of FortiAuthenticator before 6.3.1 may allow an authenticated attacker to execute unauthorized commands v...Show more An improper neutralization of special elements used in an OS command vulnerability in the command line interpreter of FortiAuthenticator before 6.3.1 may allow an authenticated attacker to execute unauthorized commands via specifically crafted arguments to existing commands.Show less
CVE-2021-26104 1Fortinet 3Fortianalyzer FortimanagerFortiportal Nov 21, 2024 Apr 6, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Multiple OS command injection (CWE-78) vulnerabilities in the command line interface of FortiManager 6.2.7 and below, 6.4.5 and below and all versions of 6.2.x, 6.0.x and 5.6.x, FortiAnalyzer 6.2.7 and below, 6.4.5 and b...Show more Multiple OS command injection (CWE-78) vulnerabilities in the command line interface of FortiManager 6.2.7 and below, 6.4.5 and below and all versions of 6.2.x, 6.0.x and 5.6.x, FortiAnalyzer 6.2.7 and below, 6.4.5 and below and all versions of 6.2.x, 6.0.x and 5.6.x, and FortiPortal 5.2.5 and below, 5.3.5 and below and 6.0.4 and below may allow a local authenticated and unprivileged user to execute arbitrary shell commands as root via specifically crafted CLI command parameters.Show less
CVE-2021-22127 1Fortinet 1Forticlient Nov 21, 2024 Apr 6, 2022 N/A· v4 8.0 HIGH· v3 7.9 HIGH· v2 An improper input validation vulnerability in FortiClient for Linux 6.4.x before 6.4.3, FortiClient for Linux 6.2.x before 6.2.9 may allow an unauthenticated attacker to execute arbitrary code on the host operating syste...Show more An improper input validation vulnerability in FortiClient for Linux 6.4.x before 6.4.3, FortiClient for Linux 6.2.x before 6.2.9 may allow an unauthenticated attacker to execute arbitrary code on the host operating system as root via tricking the user into connecting to a network with a malicious name.Show less
CVE-2021-24009 1Fortinet 1Fortiwan Nov 21, 2024 Apr 6, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Multiple improper neutralization of special elements used in an OS command vulnerabilities (CWE-78) in the Web GUI of FortiWAN before 4.5.9 may allow an authenticated attacker to execute arbitrary commands on the underly...Show more Multiple improper neutralization of special elements used in an OS command vulnerabilities (CWE-78) in the Web GUI of FortiWAN before 4.5.9 may allow an authenticated attacker to execute arbitrary commands on the underlying system's shell via specifically crafted HTTP requests.Show less
CVE-2021-42324 1Dcnglobal 1S4600 10p Si Firmware Nov 21, 2024 Apr 5, 2022 N/A· v4 7.4 HIGH· v3 7.2 HIGH· v2 An issue was discovered on DCN (Digital China Networks) S4600-10P-SI devices before R0241.0470. Due to improper parameter validation in the console interface, it is possible for a low-privileged authenticated attacker to...Show more An issue was discovered on DCN (Digital China Networks) S4600-10P-SI devices before R0241.0470. Due to improper parameter validation in the console interface, it is possible for a low-privileged authenticated attacker to escape the sandbox environment and execute system commands as root via shell metacharacters in the capture command parameters. Command output will be shown on the Serial interface of the device. Exploitation requires both credentials and physical access.Show less
CVE-2021-32974 1Moxa 4Nport Iaw5150a 12i/o Firmware Nport Iaw5150a 6i/o FirmwareNport Iaw5250a 12i/o Firmware+1 more Nov 21, 2024 Apr 1, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Improper input validation in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or earlier may allow a remote attacker to execute commands.
CVE-2021-32933 1Auvesy Mdt 2Autosave Autosave For System Platform Nov 21, 2024 Apr 1, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An attacker could leverage an API to pass along a malicious file that could then manipulate the process creation command line in MDT AutoSave versions prior to v6.02.06 and run a command line argument. This could then be...Show more An attacker could leverage an API to pass along a malicious file that could then manipulate the process creation command line in MDT AutoSave versions prior to v6.02.06 and run a command line argument. This could then be leveraged to run a malicious process.Show less
CVE-2022-25017 1Hitrontech 1Chita Firmware Nov 21, 2024 Apr 1, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Hitron CHITA 7.2.2.0.3b6-CD devices contain a command injection vulnerability via the Device/DDNS ddnsUsername field.
CVE-2022-24803 1Asciidoctor Include Ext Project 1Asciidoctor Include Ext Nov 21, 2024 Apr 1, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Asciidoctor-include-ext is Asciidoctor’s standard include processor reimplemented as an extension. Versions prior to 0.4.0, when used to render user-supplied input in AsciiDoc markup, may allow an attacker to execute arb...Show more Asciidoctor-include-ext is Asciidoctor’s standard include processor reimplemented as an extension. Versions prior to 0.4.0, when used to render user-supplied input in AsciiDoc markup, may allow an attacker to execute arbitrary system commands on the host operating system. This attack is possible even when `allow-uri-read` is disabled! The problem has been patched in the referenced commits.Show less
CVE-2022-24796 1Raspberrymatic 1Raspberrymatic Nov 21, 2024 Mar 31, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 RaspberryMatic is a free and open-source operating system for running a cloud-free smart-home using the homematicIP / HomeMatic hardware line of IoT devices. A Remote Code Execution (RCE) vulnerability in the file upload...Show more RaspberryMatic is a free and open-source operating system for running a cloud-free smart-home using the homematicIP / HomeMatic hardware line of IoT devices. A Remote Code Execution (RCE) vulnerability in the file upload facility of the WebUI interface of RaspberryMatic exists. Missing input validation/sanitization in the file upload mechanism allows remote, unauthenticated attackers with network access to the WebUI interface to achieve arbitrary operating system command execution via shell metacharacters in the HTTP query string. Injected commands are executed as root, thus leading to a full compromise of the underlying system and all its components. Versions after `2.31.25.20180428` and prior to `3.63.8.20220330` are affected. Users are advised to update to version `3.63.8.20220330` or newer. There are currently no known workarounds to mitigate the security impact and users are advised to update to the latest version available.Show less
CVE-2022-22986 1Ntt East 4Og410xa Firmware Og410xi FirmwareOg810xa Firmware+1 more Nov 21, 2024 Mar 31, 2022 N/A· v4 8.8 HIGH· v3 8.3 HIGH· v2 Netcommunity OG410X and OG810X series (Netcommunity OG410Xa, OG410Xi, OG810Xa, and OG810Xi firmware Ver.2.28 and earlier) allow an attacker on the adjacent network to execute an arbitrary OS command via a specially craft...Show more Netcommunity OG410X and OG810X series (Netcommunity OG410Xa, OG410Xi, OG810Xa, and OG810Xi firmware Ver.2.28 and earlier) allow an attacker on the adjacent network to execute an arbitrary OS command via a specially crafted config file.Show less
CVE-2021-46007 1Totolink 1Ar3100r Firmware Nov 21, 2024 Mar 30, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 totolink a3100r V5.9c.4577 is vulnerable to os command injection. The backend of a page is executing the "ping" command, and the input field does not adequately filter special symbols. This can lead to command injection...Show more totolink a3100r V5.9c.4577 is vulnerable to os command injection. The backend of a page is executing the "ping" command, and the input field does not adequately filter special symbols. This can lead to command injection attacks.Show less
CVE-2022-26258 1Dlink 1Dir 820l Firmware Nov 3, 2025 Mar 28, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 D-Link DIR-820L 1.05B03 was discovered to contain remote command execution (RCE) vulnerability via HTTP POST to get set ccp.
CVE-2022-27947 1Netgear 1R8500 Firmware Nov 21, 2024 Mar 26, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands (such as telnetd) via shell metacharacters in the ipv6_fix.cgi ipv6_wan_ipaddr, ipv6_lan_ipaddr, ipv6_wan_length, or ipv6_lan...Show more NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands (such as telnetd) via shell metacharacters in the ipv6_fix.cgi ipv6_wan_ipaddr, ipv6_lan_ipaddr, ipv6_wan_length, or ipv6_lan_length parameter.Show less
CVE-2022-27946 1Netgear 1R8500 Firmware Nov 21, 2024 Mar 26, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands (such as telnetd) via shell metacharacters in the sysNewPasswd and sysConfirmPasswd parameters to admin_account.cgi.
CVE-2022-27945 1Netgear 1R8500 Firmware Nov 21, 2024 Mar 26, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 NETGEAR R8500 1.0.2.158 devices allow remote authenticated users to execute arbitrary commands (such as telnetd) via shell metacharacters in the sysNewPasswd and sysConfirmPasswd parameters to password.cgi.
CVE-2022-27811 1Gnome 1Ocrfeeder Nov 21, 2024 Mar 24, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 GNOME OCRFeeder before 0.8.4 allows OS command injection via shell metacharacters in a PDF or image filename.

Previous 1...184185186...299 Next