Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,964)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-30228 1Chinamobile 1An Lianbao Wf 1 Firmware Nov 21, 2024 Apr 29, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The api/ZRAndlink/set_ZRAndlink interface in China Mobile An Lianbao WF-1 router 1.0.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the iandlink_proc_enable parameter.
CVE-2020-21992 1Inim 6Smartliving 10100l Firmware Smartliving 10100lg3 FirmwareSmartliving 1050 Firmware+3 more Nov 21, 2024 Apr 29, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Inim Electronics SmartLiving SmartLAN/G/SI <=6.x suffers from an authenticated remote command injection vulnerability. The issue exist due to the 'par' POST parameter not being sanitized when called with the 'testemail'...Show more Inim Electronics SmartLiving SmartLAN/G/SI <=6.x suffers from an authenticated remote command injection vulnerability. The issue exist due to the 'par' POST parameter not being sanitized when called with the 'testemail' module through web.cgi binary. The vulnerable CGI binary (ELF 32-bit LSB executable, ARM) is calling the 'sh' executable via the system() function to issue a command using the mailx service and its vulnerable string format parameter allowing for OS command injection with root privileges. An attacker can remotely execute system commands as the root user using default credentials and bypass access controls in place.Show less
CVE-2021-29147 1Arubanetworks 1Clearpass Nov 21, 2024 Apr 29, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager version(s) prior to 6.9.5, 6.8.9, 6.7.14-HF1. Aruba has released patches for Aruba ClearPass Policy Manager that address...Show more A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager version(s) prior to 6.9.5, 6.8.9, 6.7.14-HF1. Aruba has released patches for Aruba ClearPass Policy Manager that address this security vulnerability.Show less
CVE-2021-25167 1Arubanetworks 1Airwave Nov 21, 2024 Apr 29, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 A remote unauthorized access vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerabi...Show more A remote unauthorized access vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerability.Show less
CVE-2021-25166 1Arubanetworks 1Airwave Nov 21, 2024 Apr 29, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 A remote unauthorized access vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerabi...Show more A remote unauthorized access vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerability.Show less
CVE-2021-21414 1Prisma 1Prisma Nov 21, 2024 Apr 29, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Prisma is an open source ORM for Node.js & TypeScript. As of today, we are not aware of any Prisma users or external consumers of the `@prisma/sdk` package who are affected by this security vulnerability. This issue may...Show more Prisma is an open source ORM for Node.js & TypeScript. As of today, we are not aware of any Prisma users or external consumers of the `@prisma/sdk` package who are affected by this security vulnerability. This issue may lead to remote code execution if a client of the library calls the vulnerable method with untrusted input. It only affects the `getPackedPackage` function and this function is not advertised and only used for tests & building our CLI, no malicious code was found after checking our codebase.Show less
CVE-2021-30166 1Meritlilin 41P2g1022 Firmware P2g1022x FirmwareP2g1052 Firmware+38 more Nov 21, 2024 Apr 28, 2021 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 The NTP Server configuration function of the IP camera device is not verified with special parameters. Remote attackers can perform a command Injection attack and execute arbitrary commands after logging in with the priv...Show more The NTP Server configuration function of the IP camera device is not verified with special parameters. Remote attackers can perform a command Injection attack and execute arbitrary commands after logging in with the privileged permission.Show less
CVE-2020-22000 1Homeautomation Project 1Homeautomation Nov 21, 2024 Apr 27, 2021 N/A· v4 8.0 HIGH· v3 8.5 HIGH· v2 HomeAutomation 3.3.2 suffers from an authenticated OS command execution vulnerability using custom command v0.1 plugin. This can be exploited with a CSRF vulnerability to execute arbitrary shell commands as the web user...Show more HomeAutomation 3.3.2 suffers from an authenticated OS command execution vulnerability using custom command v0.1 plugin. This can be exploited with a CSRF vulnerability to execute arbitrary shell commands as the web user via the 'set_command_on' and 'set_command_off' POST parameters in '/system/systemplugins/customcommand/customcommand.plugin.php' by using an unsanitized PHP exec() function.Show less
CVE-2021-30642 1Symantec 1Security Analytics Nov 21, 2024 Apr 27, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 An input validation flaw in the Symantec Security Analytics web UI 7.2 prior 7.2.7, 8.1, prior to 8.1.3-NSR3, 8.2, prior to 8.2.1-NSR2 or 8.2.2 allows a remote, unauthenticated attacker to execute arbitrary OS commands o...Show more An input validation flaw in the Symantec Security Analytics web UI 7.2 prior 7.2.7, 8.1, prior to 8.1.3-NSR3, 8.2, prior to 8.2.1-NSR2 or 8.2.2 allows a remote, unauthenticated attacker to execute arbitrary OS commands on the target with elevated privileges.Show less
CVE-2021-20711 1Nec 1Aterm Wg2600hs Firmware Nov 21, 2024 Apr 26, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Aterm WG2600HS firmware Ver1.5.1 and earlier allows an attacker to execute arbitrary OS commands via unspecified vectors.
CVE-2021-20708 1Nec 3Aterm Wf1200cr Firmware Aterm Wg1200cr FirmwareAterm Wg2600hs Firmware Nov 21, 2024 Apr 26, 2021 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 NEC Aterm devices (Aterm WF1200CR firmware Ver1.3.2 and earlier, Aterm WG1200CR firmware Ver1.3.3 and earlier, and Aterm WG2600HS firmware Ver1.5.1 and earlier) allow authenticated attackers to execute arbitrary OS comma...Show more NEC Aterm devices (Aterm WF1200CR firmware Ver1.3.2 and earlier, Aterm WG1200CR firmware Ver1.3.3 and earlier, and Aterm WG2600HS firmware Ver1.5.1 and earlier) allow authenticated attackers to execute arbitrary OS commands by sending a specially crafted request to a specific URL.Show less
CVE-2021-20696 1Dlink 1Dap 1880ac Firmware Nov 21, 2024 Apr 26, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 DAP-1880AC firmware version 1.21 and earlier allows a remote authenticated attacker to execute arbitrary OS commands by sending a specially crafted request to a specific CGI program.
CVE-2020-7034 1Avaya 1Session Border Controller For Enterprise Nov 21, 2024 Apr 23, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A command injection vulnerability in Avaya Session Border Controller for Enterprise could allow an authenticated, remote attacker to send specially crafted messages and execute arbitrary commands with the affected system...Show more A command injection vulnerability in Avaya Session Border Controller for Enterprise could allow an authenticated, remote attacker to send specially crafted messages and execute arbitrary commands with the affected system privileges. Affected versions of Avaya Session Border Controller for Enterprise include 7.x, 8.0 through 8.1.1.xShow less
CVE-2021-31607 2Fedoraproject Saltstack 2Fedora Salt Nov 21, 2024 Apr 23, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 In SaltStack Salt 2016.9 through 3002.6, a command injection vulnerability exists in the snapper module that allows for local privilege escalation on a minion. The attack requires that a file is created with a pathname t...Show more In SaltStack Salt 2016.9 through 3002.6, a command injection vulnerability exists in the snapper module that allows for local privilege escalation on a minion. The attack requires that a file is created with a pathname that is backed up by snapper, and that the master calls the snapper.diff function (which executes popen unsafely).Show less
CVE-2021-0265 1Juniper 1Appformix Nov 21, 2024 Apr 22, 2021 N/A· v4 8.1 HIGH· v3 10.0 HIGH· v2 An unvalidated REST API in the AppFormix Agent of Juniper Networks AppFormix allows an unauthenticated remote attacker to execute commands as root on the host running the AppFormix Agent, when certain preconditions are p...Show more An unvalidated REST API in the AppFormix Agent of Juniper Networks AppFormix allows an unauthenticated remote attacker to execute commands as root on the host running the AppFormix Agent, when certain preconditions are performed by the attacker, thus granting the attacker full control over the environment. This issue affects: Juniper Networks AppFormix 3 versions prior to 3.1.22, 3.2.14, 3.3.0.Show less
CVE-2021-29465 1Discord 1Discord Recon Nov 21, 2024 Apr 22, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Discord-Recon is a bot for the Discord chat service. Versions of Discord-Recon 0.0.3 and prior contain a vulnerability in which a remote attacker is able to overwrite any file on the system with the command results. This...Show more Discord-Recon is a bot for the Discord chat service. Versions of Discord-Recon 0.0.3 and prior contain a vulnerability in which a remote attacker is able to overwrite any file on the system with the command results. This can result in remote code execution when the user overwrite important files on the system. As a workaround, bot maintainers can edit their `setting.py` file then add `<` and `>` into the `RCE` variable inside of it to fix the issue without an update. The vulnerability is patched in version 0.0.4.Show less
CVE-2020-35314 1Wondercms 1Wondercms Nov 21, 2024 Apr 20, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A remote code execution vulnerability in the installUpdateThemePluginAction function in index.php in WonderCMS 3.1.3, allows remote attackers to upload a custom plugin which can contain arbitrary code and obtain a webshe...Show more A remote code execution vulnerability in the installUpdateThemePluginAction function in index.php in WonderCMS 3.1.3, allows remote attackers to upload a custom plugin which can contain arbitrary code and obtain a webshell via the theme/plugin installer.Show less
CVE-2021-21526 1Dell 1Powerscale Onefs Feb 20, 2026 Apr 20, 2021 N/A· v4 6.7 MEDIUM· v3 7.2 HIGH· v2 Dell PowerScale OneFS 8.1.0 - 9.1.0 contains a privilege escalation in SmartLock compliance mode that may allow compadmin to execute arbitrary commands as root.
CVE-2021-20991 1Fibaro 2Home Center 2 Firmware Home Center Lite Firmware Nov 21, 2024 Apr 19, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 In Fibaro Home Center 2 and Lite devices with firmware version 4.540 and older an authenticated user can run commands as root user using a command injection vulnerability.
CVE-2021-23381 1Killing Project 1Killing Nov 21, 2024 Apr 18, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 This affects all versions of package killing. If attacker-controlled user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input...Show more This affects all versions of package killing. If attacker-controlled user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization.Show less

Previous 1...206207208...299 Next