Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,964)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-23935 1Exiftool Project 1Exiftool Nov 21, 2024 Jan 25, 2022 N/A· v4 7.8 HIGH· v3 7.6 HIGH· v2 lib/Image/ExifTool.pm in ExifTool before 12.38 mishandles a $file =~ /\\|$/ check, leading to command injection.
CVE-2021-43589 1Dell 3Emc Unity Operating Environment Emc Unity Xt Operating EnvironmentEmc Unityvsa Operating Environment Nov 21, 2024 Jan 24, 2022 N/A· v4 6.7 MEDIUM· v3 7.2 HIGH· v2 Dell EMC Unity, Dell EMC UnityVSA and Dell EMC Unity XT versions prior to 5.1.2.0.5.007 contain an operating system (OS) command injection Vulnerability. A locally authenticated user with high privileges may potentially...Show more Dell EMC Unity, Dell EMC UnityVSA and Dell EMC Unity XT versions prior to 5.1.2.0.5.007 contain an operating system (OS) command injection Vulnerability. A locally authenticated user with high privileges may potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the Unity underlying OS, with the privileges of the vulnerable application. Exploitation may lead to an elevation of privilege.Show less
CVE-2021-44981 1Quickbox 1Quickbox Nov 21, 2024 Jan 24, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 In QuickBox Pro v2.5.8 and below, the config.php file has a variable which takes a GET parameter value and parses it into a shell_exec(''); function without properly sanitizing any shell arguments, therefore remote code...Show more In QuickBox Pro v2.5.8 and below, the config.php file has a variable which takes a GET parameter value and parses it into a shell_exec(''); function without properly sanitizing any shell arguments, therefore remote code execution is possible. Additionally, as the media server is running as root by default attackers can use the sudo command within this shell_exec(''); function, which allows for privilege escalation by means of RCE.Show less
CVE-2021-31854 1Mcafee 1Agent Feb 24, 2026 Jan 19, 2022 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 A command Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.7.5 allows local users to inject arbitrary shell code into the file cleanup.exe. The malicious clean.exe file is placed into the relevant fold...Show more A command Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.7.5 allows local users to inject arbitrary shell code into the file cleanup.exe. The malicious clean.exe file is placed into the relevant folder and executed by running the McAfee Agent deployment feature located in the System Tree. An attacker may exploit the vulnerability to obtain a reverse shell which can lead to privilege escalation to obtain root privileges.Show less
CVE-2021-38965 1Ibm 1Filenet Content Manager Nov 21, 2024 Jan 17, 2022 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 IBM FileNet Content Manager 5.5.4, 5.5.6, and 5.5.7 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 212346.
CVE-2021-33827 1Owncloud 1Files Antivirus Nov 21, 2024 Jan 15, 2022 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 The files_antivirus component before 1.0.0 for ownCloud allows OS Command Injection via the administration settings.
CVE-2021-33962 1Chinamobileltd 1An Lianbao Wf Firmware 1 Nov 21, 2024 Jan 14, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 China Mobile An Lianbao WF-1 router v1.0.1 is affected by an OS command injection vulnerability in the web interface /api/ZRUsb/pop_usb_device component.
CVE-2022-22991 1Westerndigital 1My Cloud Os Nov 21, 2024 Jan 13, 2022 N/A· v4 8.8 HIGH· v3 8.3 HIGH· v2 A malicious user on the same LAN could use DNS spoofing followed by a command injection attack to trick a NAS device into loading through an unsecured HTTP call. Addressed this vulnerability by disabling checks for inter...Show more A malicious user on the same LAN could use DNS spoofing followed by a command injection attack to trick a NAS device into loading through an unsecured HTTP call. Addressed this vulnerability by disabling checks for internet connectivity using HTTP.Show less
CVE-2022-20617 1Jenkins 1Docker Commons Nov 21, 2024 Jan 12, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Jenkins Docker Commons Plugin 1.17 and earlier does not sanitize the name of an image or a tag, resulting in an OS command execution vulnerability exploitable by attackers with Item/Configure permission or able to contro...Show more Jenkins Docker Commons Plugin 1.17 and earlier does not sanitize the name of an image or a tag, resulting in an OS command execution vulnerability exploitable by attackers with Item/Configure permission or able to control the contents of a previously configured job's SCM repository.Show less
CVE-2022-21668 2Fedoraproject Pypa 2Fedora Pipenv Nov 21, 2024 Jan 10, 2022 N/A· v4 8.6 HIGH· v3 9.3 HIGH· v2 pipenv is a Python development workflow tool. Starting with version 2018.10.9 and prior to version 2022.1.8, a flaw in pipenv's parsing of requirements files allows an attacker to insert a specially crafted string inside...Show more pipenv is a Python development workflow tool. Starting with version 2018.10.9 and prior to version 2022.1.8, a flaw in pipenv's parsing of requirements files allows an attacker to insert a specially crafted string inside a comment anywhere within a requirements.txt file, which will cause victims who use pipenv to install the requirements file to download dependencies from a package index server controlled by the attacker. By embedding malicious code in packages served from their malicious index server, the attacker can trigger arbitrary remote code execution (RCE) on the victims' systems. If an attacker is able to hide a malicious `--index-url` option in a requirements file that a victim installs with pipenv, the attacker can embed arbitrary malicious code in packages served from their malicious index server that will be executed on the victim's host during installation (remote code execution/RCE). When pip installs from a source distribution, any code in the setup.py is executed by the install process. This issue is patched in version 2022.1.8. The GitHub Security Advisory contains more information about this vulnerability.Show less
CVE-2021-23154 1Mirantis 1Lens Nov 21, 2024 Jan 10, 2022 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 In Lens prior to 5.3.4, custom helm chart configuration creates helm commands from string concatenation of provided arguments which are then executed in the user's shell. Arguments can be provided which cause arbitrary s...Show more In Lens prior to 5.3.4, custom helm chart configuration creates helm commands from string concatenation of provided arguments which are then executed in the user's shell. Arguments can be provided which cause arbitrary shell commands to run on the system.Show less
CVE-2021-43779 1Teclib Edition 1Addressing Sep 8, 2025 Jan 5, 2022 N/A· v4 9.9 CRITICAL· v3 9.0 HIGH· v2 GLPI is an open source IT Asset Management, issue tracking system and service desk system. The GLPI addressing plugin in versions < 2.9.1 suffers from authenticated Remote Code Execution vulnerability, allowing access to...Show more GLPI is an open source IT Asset Management, issue tracking system and service desk system. The GLPI addressing plugin in versions < 2.9.1 suffers from authenticated Remote Code Execution vulnerability, allowing access to the server's underlying operating system using command injection abuse of functionality. There is no workaround for this issue and users are advised to upgrade or to disable the addressing plugin.Show less
CVE-2021-45912 1Controlup 1Real Time Agent Nov 21, 2024 Jan 4, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 An unauthenticated Named Pipe channel in Controlup Real-Time Agent (cuAgent.exe) before 8.5 potentially allows an attacker to run OS commands via the ProcessActionRequest WCF method.
CVE-2021-45979 1Foxit 2Pdf Editor Pdf Reader Nov 21, 2024 Jan 4, 2022 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Foxit PDF Reader and PDF Editor before 11.1 on macOS allow remote attackers to execute arbitrary code via app.launchURL in the JavaScript API.
CVE-2021-45978 1Foxit 2Pdf Editor Pdf Reader Nov 21, 2024 Jan 4, 2022 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Foxit PDF Reader and PDF Editor before 11.1 on macOS allow remote attackers to execute arbitrary code via xfa.host.gotoURL in the XFA API.
CVE-2021-20173 1Netgear 1R6700 Firmware Nov 21, 2024 Dec 30, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Netgear Nighthawk R6700 version 1.0.4.120 contains a command injection vulnerability in update functionality of the device. By triggering a system update check via the SOAP interface, the device is susceptible to command...Show more Netgear Nighthawk R6700 version 1.0.4.120 contains a command injection vulnerability in update functionality of the device. By triggering a system update check via the SOAP interface, the device is susceptible to command injection via preconfigured values.Show less
CVE-2021-20160 1Trendnet 1Tew 827dru Firmware Nov 21, 2024 Dec 30, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Trendnet AC2600 TEW-827DRU version 2.08B01 contains a command injection vulnerability in the smb functionality of the device. The username parameter used when configuring smb functionality for the device is vulnerable to...Show more Trendnet AC2600 TEW-827DRU version 2.08B01 contains a command injection vulnerability in the smb functionality of the device. The username parameter used when configuring smb functionality for the device is vulnerable to command injection as root.Show less
CVE-2021-20159 1Trendnet 1Tew 827dru Firmware Nov 21, 2024 Dec 30, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Trendnet AC2600 TEW-827DRU version 2.08B01 is vulnerable to command injection. The system log functionality of the firmware allows for command injection as root by supplying a malformed parameter.
CVE-2021-35032 1Zyxel 12Gs1900 10hp Firmware Gs1900 16 FirmwareGs1900 24 Firmware+9 more Nov 21, 2024 Dec 28, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A vulnerability in the 'libsal.so' of the Zyxel GS1900 series firmware version 2.60 could allow an authenticated local user to execute arbitrary OS commands via a crafted function call.
CVE-2021-35031 1Zyxel 14Gs1900 10hp Firmware Gs1900 16 FirmwareGs1900 24 Firmware+11 more Nov 21, 2024 Dec 28, 2021 N/A· v4 8.0 HIGH· v3 7.7 HIGH· v2 A vulnerability in the TFTP client of Zyxel GS1900 series firmware, XGS1210 series firmware, and XGS1250 series firmware, which could allow an authenticated LAN user to execute arbitrary OS commands via the GUI of the vu...Show more A vulnerability in the TFTP client of Zyxel GS1900 series firmware, XGS1210 series firmware, and XGS1250 series firmware, which could allow an authenticated LAN user to execute arbitrary OS commands via the GUI of the vulnerable device.Show less

Previous 1...190191192...299 Next