Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,956)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-27104 1Accellion 1Fta Nov 3, 2025 Feb 16, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Accellion FTA 9_12_370 and earlier is affected by OS command execution via a crafted POST request to various admin endpoints. The fixed version is FTA_9_12_380 and later.
CVE-2021-27102 1Accellion 1Fta Nov 3, 2025 Feb 16, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Accellion FTA 9_12_411 and earlier is affected by OS command execution via a local web service call. The fixed version is FTA_9_12_416 and later.
CVE-2021-20074 1Racom 1M!dge Firmware Nov 21, 2024 Feb 16, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows users to escape the provided command line interface and execute arbitrary OS commands.
CVE-2021-21315 2Apache Systeminformation 2Cordova Systeminformation Oct 24, 2025 Feb 16, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 The System Information Library for Node.JS (npm package "systeminformation") is an open source collection of functions to retrieve detailed hardware, system and OS information. In systeminformation before version 5.3.1 t...Show more The System Information Library for Node.JS (npm package "systeminformation") is an open source collection of functions to retrieve detailed hardware, system and OS information. In systeminformation before version 5.3.1 there is a command injection vulnerability. Problem was fixed in version 5.3.1. As a workaround instead of upgrading, be sure to check or sanitize service parameters that are passed to si.inetLatency(), si.inetChecksite(), si.services(), si.processLoad() ... do only allow strings, reject any arrays. String sanitation works as expected.Show less
CVE-2021-27201 1Endian 1Firewall Community Nov 21, 2024 Feb 15, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Endian Firewall Community (aka EFW) 3.3.2 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in a backup comment.
CVE-2020-24899 1Nagios 1Nagios Xi Nov 21, 2024 Feb 15, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Nagios XI 5.7.2 is affected by a remote code execution (RCE) vulnerability. An authenticated user can inject additional commands into normal webapp query.
CVE-2021-25298 1Nagios 1Nagios Xi Nov 3, 2025 Feb 15, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/cloud-vm/cloud-vm.inc.php due to improper sanitization of authenticated...Show more Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/cloud-vm/cloud-vm.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command injection on the Nagios XI server.Show less
CVE-2021-25297 1Nagios 1Nagios Xi Nov 3, 2025 Feb 15, 2021 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/switch/switch.inc.php due to improper sanitization of authenticated use...Show more Nagios XI version xi-5.7.5 is affected by OS command injection. The vulnerability exists in the file /usr/local/nagiosxi/html/includes/configwizards/switch/switch.inc.php due to improper sanitization of authenticated user-controlled input by a single HTTP request, which can lead to OS command injection on the Nagios XI server.Show less
CVE-2021-26752 1Nedi 1Nedi Nov 21, 2024 Feb 12, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 NeDi 1.9C allows an authenticated user to execute operating system commands in the Nodes Traffic function on the endpoint /Nodes-Traffic.php via the md or ag HTTP GET parameter. This allows an attacker to obtain access t...Show more NeDi 1.9C allows an authenticated user to execute operating system commands in the Nodes Traffic function on the endpoint /Nodes-Traffic.php via the md or ag HTTP GET parameter. This allows an attacker to obtain access to the operating system where NeDi is installed and to all application data.Show less
CVE-2021-20648 1Elecom 1Wrc 300febk S Firmware Nov 21, 2024 Feb 12, 2021 N/A· v4 6.8 MEDIUM· v3 7.7 HIGH· v2 ELECOM WRC-300FEBK-S allows an attacker with administrator rights to execute arbitrary OS commands via unspecified vectors.
CVE-2021-20639 1Logitech 1Lan W300n/pgrb Firmware Nov 21, 2024 Feb 12, 2021 N/A· v4 6.8 MEDIUM· v3 7.7 HIGH· v2 LOGITEC LAN-W300N/PGRB allows an attacker with administrative privilege to execute arbitrary OS commands via unspecified vectors.
CVE-2021-20638 1Logitech 1Lan W300n/pgrb Firmware Nov 21, 2024 Feb 12, 2021 N/A· v4 6.8 MEDIUM· v3 7.7 HIGH· v2 LOGITEC LAN-W300N/PGRB allows an attacker with administrative privilege to execute arbitrary OS commands via unspecified vectors.
CVE-2020-27861 1Netgear 39Cbk40 Firmware Cbk43 FirmwareCbr40 Firmware+36 more Nov 21, 2024 Feb 12, 2021 N/A· v4 8.8 HIGH· v3 8.3 HIGH· v2 This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR Orbi 2.5.1.16 routers. Authentication is not required to exploit this vulnerability. The specific flaw e...Show more This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR Orbi 2.5.1.16 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the UA_Parser utility. A crafted Host Name option in a DHCP request can trigger execution of a system call composed from a user-supplied string. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-11076.Show less
CVE-2021-21976 1Vmware 1Vsphere Replication Nov 21, 2024 Feb 11, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 vSphere Replication 8.3.x prior to 8.3.1.2, 8.2.x prior to 8.2.1.1, 8.1.x prior to 8.1.2.3 and 6.5.x prior to 6.5.1.5 contain a post-authentication command injection vulnerability which may allow an authenticated admin u...Show more vSphere Replication 8.3.x prior to 8.3.1.2, 8.2.x prior to 8.2.1.1, 8.1.x prior to 8.1.2.3 and 6.5.x prior to 6.5.1.5 contain a post-authentication command injection vulnerability which may allow an authenticated admin user to perform a remote code execution.Show less
CVE-2021-21018 1Magento 1Magento Nov 21, 2024 Feb 11, 2021 N/A· v4 9.1 CRITICAL· v3 9.0 HIGH· v2 Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to OS command injection via the scheduled operation module. Successful exploitation could lead to arbitrary code executi...Show more Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to OS command injection via the scheduled operation module. Successful exploitation could lead to arbitrary code execution by an authenticated attacker. Access to the admin console is required for successful exploitation.Show less
CVE-2021-21016 1Magento 1Magento Nov 21, 2024 Feb 11, 2021 N/A· v4 9.1 CRITICAL· v3 9.0 HIGH· v2 Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to OS command injection via the WebAPI. Successful exploitation could lead to remote code execution by an authenticated...Show more Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to OS command injection via the WebAPI. Successful exploitation could lead to remote code execution by an authenticated attacker. Access to the admin console is required for successful exploitation.Show less
CVE-2021-21015 1Magento 1Magento Nov 21, 2024 Feb 11, 2021 N/A· v4 8.0 HIGH· v3 8.5 HIGH· v2 Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to an OS command injection via the customer attribute save controller. Successful exploitation could lead to arbitrary c...Show more Magento versions 2.4.1 (and earlier), 2.4.0-p1 (and earlier) and 2.3.6 (and earlier) are vulnerable to an OS command injection via the customer attribute save controller. Successful exploitation could lead to arbitrary code execution by an authenticated attacker. Access to the admin console is required for successful exploitation.Show less
CVE-2020-26193 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Feb 9, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain an improper input validation vulnerability. A user with the ISI_PRIV_CLUSTER privilege may exploit this vulnerability, leading to the execution of arbitrary OS com...Show more Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain an improper input validation vulnerability. A user with the ISI_PRIV_CLUSTER privilege may exploit this vulnerability, leading to the execution of arbitrary OS commands on the application's underlying OS, with the privileges of the vulnerable application.Show less
CVE-2021-22502 1Microfocus 1Operation Bridge Reporter Oct 27, 2025 Feb 8, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Remote Code execution vulnerability in Micro Focus Operation Bridge Reporter (OBR) product, affecting version 10.40. The vulnerability could be exploited to allow Remote Code Execution on the OBR server.
CVE-2020-7786 1Macfromip Project 1Macfromip Nov 21, 2024 Feb 8, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 This affects all versions of package macfromip. The injection point is located in line 66 in macfromip.js.

Previous 1...211212213...298 Next