Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,953)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-2276 1Jenkins 1Selection Tasks Nov 21, 2024 Sep 16, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Jenkins Selection tasks Plugin 1.0 and earlier executes a user-specified program on the Jenkins controller, allowing attackers with Job/Configure permission to execute an arbitrary system command on the Jenkins controlle...Show more Jenkins Selection tasks Plugin 1.0 and earlier executes a user-specified program on the Jenkins controller, allowing attackers with Job/Configure permission to execute an arbitrary system command on the Jenkins controller as the OS user that the Jenkins process is running as.Show less
CVE-2020-2261 1Jenkins 1Perfecto Nov 21, 2024 Sep 16, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Jenkins Perfecto Plugin 1.17 and earlier executes a command on the Jenkins controller, allowing attackers with Job/Configure permission to run arbitrary commands on the Jenkins controller
CVE-2020-24552 1Atoptechnology 7Se5901 Firmware Se5901b FirmwareSe5904d Firmware+4 more Nov 21, 2024 Sep 10, 2020 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 Atop Technology industrial 3G/4G gateway contains Command Injection vulnerability. Due to insufficient input validation, the device's web management interface allows attackers to inject specific code and execute system c...Show more Atop Technology industrial 3G/4G gateway contains Command Injection vulnerability. Due to insufficient input validation, the device's web management interface allows attackers to inject specific code and execute system commands without privilege.Show less
CVE-2020-24916 3Canonical DebianYaws 3Debian Linux Ubuntu LinuxYaws Nov 21, 2024 Sep 9, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 CGI implementation in Yaws web server versions 1.81 to 2.0.7 is vulnerable to OS command injection.
CVE-2020-2038 1Paloaltonetworks 1Pan Os Nov 21, 2024 Sep 9, 2020 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges. This issue impacts: PAN-OS 9.0 versions earlier tha...Show more An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges. This issue impacts: PAN-OS 9.0 versions earlier than 9.0.10; PAN-OS 9.1 versions earlier than 9.1.4; PAN-OS 10.0 versions earlier than 10.0.1.Show less
CVE-2020-2037 1Paloaltonetworks 1Pan Os Nov 21, 2024 Sep 9, 2020 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges. This issue impacts: PAN-OS 8.1 versions earlier tha...Show more An OS Command Injection vulnerability in the PAN-OS management interface that allows authenticated administrators to execute arbitrary OS commands with root privileges. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.16; PAN-OS 9.0 versions earlier than PAN-OS 9.0.10; PAN-OS 9.1 versions earlier than PAN-OS 9.1.3.Show less
CVE-2020-14342 3Fedoraproject OpensuseSamba 3Cifs Utils FedoraLeap Nov 21, 2024 Sep 9, 2020 N/A· v4 7.0 HIGH· v3 4.4 MEDIUM· v2 It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as v...Show more It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges.Show less
CVE-2020-7730 1Bestzip Project 1Bestzip Nov 21, 2024 Sep 4, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The package bestzip before 2.1.7 are vulnerable to Command Injection via the options param.
CVE-2020-3430 1Cisco 1Jabber Nov 21, 2024 Sep 4, 2020 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 A vulnerability in the application protocol handling features of Cisco Jabber for Windows could allow an unauthenticated, remote attacker to execute arbitrary commands. The vulnerability is due to improper handling of in...Show more A vulnerability in the application protocol handling features of Cisco Jabber for Windows could allow an unauthenticated, remote attacker to execute arbitrary commands. The vulnerability is due to improper handling of input to the application protocol handlers. An attacker could exploit this vulnerability by convincing a user to click a link within a message sent by email or other messaging platform. A successful exploit could allow the attacker to execute arbitrary commands on a targeted system with the privileges of the user account that is running the Cisco Jabber client software.Show less
CVE-2020-13802 1Erlang 1Rebar3 Nov 21, 2024 Sep 2, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Rebar3 versions 3.0.0-beta.3 to 3.13.2 are vulnerable to OS command injection via URL parameter of dependency specification.
CVE-2020-24354 1Zyxel 1Vmg5313 B30b Firmware Nov 21, 2024 Aug 31, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Zyxel VMG5313-B30B router on firmware 5.13(ABCJ.6)b3_1127, and possibly older versions of firmware are affected by shell injection.
CVE-2020-7712 2Joyent Oracle 5Commerce Guided Search Financial Services Crime And Compliance Management StudioFinancial Services Regulatory Reporting With Agilereporter+2 more Nov 21, 2024 Aug 30, 2020 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 This affects the package json before 10.0.0. It is possible to inject arbritary commands using the parseLookup function.
CVE-2020-3454 1Cisco 1Nx Os Nov 21, 2024 Aug 27, 2020 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 A vulnerability in the Call Home feature of Cisco NX-OS Software could allow an authenticated, remote attacker to inject arbitrary commands that could be executed with root privileges on the underlying operating system (...Show more A vulnerability in the Call Home feature of Cisco NX-OS Software could allow an authenticated, remote attacker to inject arbitrary commands that could be executed with root privileges on the underlying operating system (OS). The vulnerability is due to insufficient input validation of specific Call Home configuration parameters when the software is configured for transport method HTTP. An attacker could exploit this vulnerability by modifying parameters within the Call Home configuration on an affected device. A successful exploit could allow the attacker to execute arbitrary commands with root privileges on the underlying OS.Show less
CVE-2019-14904 2Debian Redhat 2Ansible Debian Linux Nov 21, 2024 Aug 26, 2020 N/A· v4 7.3 HIGH· v3 6.1 MEDIUM· v2 A flaw was found in the solaris_zone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the re...Show more A flaw was found in the solaris_zone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the name of the zone and executing arbitrary commands in the remote host. Ansible Engine 2.7.15, 2.8.7, and 2.9.2 as well as previous versions are affected.Show less
CVE-2020-15642 1Marvell 1Qconvergeconsole Nov 21, 2024 Aug 25, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 This vulnerability allows remote attackers to execute arbitrary code on affected installations of installations of Marvell QConvergeConsole 5.5.0.64. Although authentication is required to exploit this vulnerability, the...Show more This vulnerability allows remote attackers to execute arbitrary code on affected installations of installations of Marvell QConvergeConsole 5.5.0.64. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the isHPSmartComponent method of the GWTTestServiceImpl class. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-10501.Show less
CVE-2020-17384 1Cellopoint 1Cellos May 8, 2025 Aug 25, 2020 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 Cellopoint CelloOS v4.1.10 Build 20190922 does not validate URL inputted properly. With the cookie of the system administrator, attackers can inject and remotely execute arbitrary command to manipulate the system.
CVE-2020-24572 1Raspap 1Raspap Nov 21, 2024 Aug 24, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 An issue was discovered in includes/webconsole.php in RaspAP 2.5. With authenticated access, an attacker can use a misconfigured (and virtually unrestricted) web console to attack the underlying OS (Raspberry Pi) running...Show more An issue was discovered in includes/webconsole.php in RaspAP 2.5. With authenticated access, an attacker can use a misconfigured (and virtually unrestricted) web console to attack the underlying OS (Raspberry Pi) running this software, and execute commands on the system (including ones for uploading of files and execution of code).Show less
CVE-2020-24057 1Verint 1S5120fd Firmware Nov 21, 2024 Aug 21, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 The management website of the Verint S5120FD Verint_FW_0_42 unit features a CGI endpoint ('ipfilter.cgi') that allows the user to manage network filtering on the unit. This endpoint is vulnerable to a command injection....Show more The management website of the Verint S5120FD Verint_FW_0_42 unit features a CGI endpoint ('ipfilter.cgi') that allows the user to manage network filtering on the unit. This endpoint is vulnerable to a command injection. An authenticated attacker can leverage this issue to execute arbitrary commands as 'root'.Show less
CVE-2020-24054 1Moog 2Exvf5c 2 Firmware Exvp7c2 3 Firmware Nov 21, 2024 Aug 21, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 The administration console of the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units features a 'statusbroadcast' command that can spawn a given process repeatedly at a certain time interval as 'root'. One of the limitations o...Show more The administration console of the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units features a 'statusbroadcast' command that can spawn a given process repeatedly at a certain time interval as 'root'. One of the limitations of this feature is that it only takes a path to a binary without arguments; however, this can be circumvented using special shell variables, such as '${IFS}'. As a result, an attacker can execute arbitrary commands as 'root' on the units.Show less
CVE-2020-16282 1Rangee 1Rangeeos Nov 21, 2024 Aug 20, 2020 N/A· v4 8.8 HIGH· v3 7.2 HIGH· v2 In the default configuration of Rangee GmbH RangeeOS 8.0.4, all components are executed in the context of the privileged root user. This may allow a local attacker to break out of the restricted environment or inject mal...Show more In the default configuration of Rangee GmbH RangeeOS 8.0.4, all components are executed in the context of the privileged root user. This may allow a local attacker to break out of the restricted environment or inject malicious code into the application and fully compromise the operating system.Show less

Previous 1...220221222...298 Next