Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,964)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-27561 1Yealink 1Device Management Nov 10, 2025 Oct 15, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Yealink Device Management (DM) 3.6.0.20 allows command injection as root via the /sm/api/v1/firewall/zone/services URI, without authentication.
CVE-2020-22724 1Mercury 2Mer1200 Firmware Mer1200g Firmware Nov 21, 2024 Oct 14, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A remote command execution vulnerability exists in add_server_service of PPTP_SERVER in Mercury Router MER1200 v1.0.1 and Mercury Router MER1200G v1.0.1.
CVE-2021-37732 2Arubanetworks Siemens 2Aruba Instant Scalance W1750d Firmware Nov 21, 2024 Oct 12, 2021 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): Aruba Instant 6.4.x.x: 6.4.4.8-4.2.4.17 and below; Aruba Instant 6.5.x.x: 6.5.4.18 and below; Aruba Instant 8.5.x.x...Show more A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): Aruba Instant 6.4.x.x: 6.4.4.8-4.2.4.17 and below; Aruba Instant 6.5.x.x: 6.5.4.18 and below; Aruba Instant 8.5.x.x: 8.5.0.11 and below; Aruba Instant 8.6.x.x: 8.6.0.6 and below; Aruba Instant 8.7.x.x: 8.7.1.0 and below. Aruba has released patches for Aruba Instant (IAP) that address this security vulnerability.Show less
CVE-2021-37730 2Arubanetworks Siemens 2Aruba Instant Scalance W1750d Firmware Nov 21, 2024 Oct 12, 2021 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): Aruba Instant 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.20 and below; Aruba Instant 8.5.x.x...Show more A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): Aruba Instant 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.20 and below; Aruba Instant 8.5.x.x: 8.5.0.12 and below; Aruba Instant 8.6.x.x: 8.6.0.11 and below; Aruba Instant 8.7.x.x: 8.7.1.3 and below. Aruba has released patches for Aruba Instant (IAP) that address this security vulnerability.Show less
CVE-2021-37727 2Arubanetworks Siemens 2Aruba Instant Scalance W1750d Firmware Nov 21, 2024 Oct 12, 2021 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.20 and below; Aruba Instant 8.5.x.x: 8.5.0.12 and...Show more A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP) version(s): 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.20 and below; Aruba Instant 8.5.x.x: 8.5.0.12 and below; Aruba Instant 8.6.x.x: 8.6.0.11 and below; Aruba Instant 8.7.x.x: 8.7.1.3 and below. Aruba has released patches for Aruba Instant (IAP) that address this security vulnerability.Show less
CVE-2021-20122 1Telus 1Prv65b444a S Ts Firmware Nov 21, 2024 Oct 11, 2021 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is affected by an authenticated command injection vulnerability in multiple parameters passed to tr69_cmd.cgi. A remote attacker connected to the router...Show more The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is affected by an authenticated command injection vulnerability in multiple parameters passed to tr69_cmd.cgi. A remote attacker connected to the router's LAN and authenticated with a super user account, or using a bypass authentication vulnerability like CVE-2021-20090 could leverage this issue to run commands or gain a shell as root on the target device.Show less
CVE-2021-42071 1Visual Tools 1Dvr Vx16 Firmware Nov 21, 2024 Oct 7, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In Visual Tools DVR VX16 4.2.28.0, an unauthenticated attacker can achieve remote command execution via shell metacharacters in the cgi-bin/slogin/login.py User-Agent HTTP header.
CVE-2021-34748 1Cisco 1Intersight Virtual Appliance Nov 21, 2024 Oct 6, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to perform a command injection attack on an affected device. This vulnerability is...Show more A vulnerability in the web-based management interface of Cisco Intersight Virtual Appliance could allow an authenticated, remote attacker to perform a command injection attack on an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by using the web-based management interface to execute a command using crafted input. A successful exploit could allow the attacker to execute arbitrary commands using root-level privileges on an affected device.Show less
CVE-2021-34710 1Cisco 3Ata 190 Firmware Ata 191 FirmwareAta 192 Firmware Nov 21, 2024 Oct 6, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Multiple vulnerabilities in the Cisco ATA 190 Series Analog Telephone Adapter Software could allow an attacker to perform a command injection attack resulting in remote code execution or cause a denial of service (DoS) c...Show more Multiple vulnerabilities in the Cisco ATA 190 Series Analog Telephone Adapter Software could allow an attacker to perform a command injection attack resulting in remote code execution or cause a denial of service (DoS) condition on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.Show less
CVE-2021-1594 1Cisco 1Identity Services Engine Nov 21, 2024 Oct 6, 2021 N/A· v4 8.1 HIGH· v3 9.3 HIGH· v2 A vulnerability in the REST API of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to perform a command injection attack and elevate privileges to root. This vulnerability is due to i...Show more A vulnerability in the REST API of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to perform a command injection attack and elevate privileges to root. This vulnerability is due to insufficient input validation for specific API endpoints. An attacker in a man-in-the-middle position could exploit this vulnerability by intercepting and modifying specific internode communications from one ISE persona to another ISE persona. A successful exploit could allow the attacker to run arbitrary commands with root privileges on the underlying operating system. To exploit this vulnerability, the attacker would need to decrypt HTTPS traffic between two ISE personas that are located on separate nodes.Show less
CVE-2021-22557 1Google 1Slo Generator Nov 21, 2024 Oct 4, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/googl...Show more SLO generator allows for loading of YAML files that if crafted in a specific format can allow for code execution within the context of the SLO Generator. We recommend upgrading SLO Generator past https://github.com/google/slo-generator/pull/173Show less
CVE-2021-34352 1Qnap 1Qvr Nov 21, 2024 Oct 1, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in...Show more A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.5 build 20210902 and laterShow less
CVE-2021-35028 1Zyxel 1Zywall Vpn2s Firmware Nov 21, 2024 Sep 29, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A command injection vulnerability in the CGI program of the Zyxel VPN2S firmware version 1.12 could allow an authenticated, local user to execute arbitrary OS commands.
CVE-2021-21570 1Dell 1Emc Networker Nov 21, 2024 Sep 28, 2021 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 Dell NetWorker, versions 18.x and 19.x contain an Information disclosure vulnerability. A NetWorker server user with remote access to NetWorker clients may potentially exploit this vulnerability and gain access to unauth...Show more Dell NetWorker, versions 18.x and 19.x contain an Information disclosure vulnerability. A NetWorker server user with remote access to NetWorker clients may potentially exploit this vulnerability and gain access to unauthorized information.Show less
CVE-2021-21569 1Dell 1Emc Networker Nov 21, 2024 Sep 28, 2021 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 Dell NetWorker, versions 18.x and 19.x contain a Path traversal vulnerability. A NetWorker server user with remote access to NetWorker clients may potentially exploit this vulnerability and gain access to unauthorized in...Show more Dell NetWorker, versions 18.x and 19.x contain a Path traversal vulnerability. A NetWorker server user with remote access to NetWorker clients may potentially exploit this vulnerability and gain access to unauthorized information.Show less
CVE-2021-20035 1Sonicwall 5Sma 200 Firmware Sma 210 FirmwareSma 400 Firmware+2 more Oct 31, 2025 Sep 27, 2021 N/A· v4 6.5 MEDIUM· v3 6.8 MEDIUM· v2 Improper neutralization of special elements in the SMA100 management interface allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user which potentially leads to DoS.
CVE-2021-39826 1Adobe 1Digital Editions Nov 21, 2024 Sep 27, 2021 N/A· v4 8.6 HIGH· v3 9.3 HIGH· v2 Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary command execution vulnerability. An authenticated attacker could leverage this vulnerability to execute arbitrary commands. User interaction...Show more Adobe Digital Editions 4.5.11.187646 (and earlier) are affected by an arbitrary command execution vulnerability. An authenticated attacker could leverage this vulnerability to execute arbitrary commands. User interaction is required to abuse this vulnerability in that a user must open a maliciously crafted .epub file.Show less
CVE-2021-31605 1Openvpn Monitor Project 1Openvpn Monitor Nov 21, 2024 Sep 27, 2021 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 furlongm openvpn-monitor through 1.1.3 allows %0a command injection via the OpenVPN management interface socket. This can shut down the server via signal%20SIGTERM.
CVE-2021-34351 1Qnap 1Qvr Nov 21, 2024 Sep 27, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in...Show more A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.5 build 20210803 and laterShow less
CVE-2021-34349 1Qnap 1Qvr Nov 21, 2024 Sep 27, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in...Show more A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.5 build 20210803 and laterShow less

Previous 1...196197198...299 Next