Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,953)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-16279 1Rangee 1Rangeeos Nov 21, 2024 Aug 20, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The Kommbox component in Rangee GmbH RangeeOS 8.0.4 is vulnerable to Remote Code Execution due to untrusted user supplied input being passed to the command line without sanitization.
CVE-2020-17456 1Seowonintech 5Slc 130 Firmware Slr 120d42g FirmwareSlr 120s42g Firmware+2 more Nov 21, 2024 Aug 20, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 SEOWON INTECH SLC-130 And SLR-120S devices allow Remote Code Execution via the ipAddr parameter to the system_log.cgi page.
CVE-2020-24032 1Xorux 2Lpar2rrd Stor2rrd Nov 21, 2024 Aug 18, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 tz.pl on XoruX LPAR2RRD and STOR2RRD 2.70 virtual appliances allows cmd=set&tz=OS command injection via shell metacharacters in a timezone.
CVE-2020-23934 1Ritecms 1Ritecms Nov 21, 2024 Aug 18, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 An issue was discovered in RiteCMS 2.2.1. An authenticated user can directly execute system commands by uploading a php web shell in the "Filemanager" section.
CVE-2020-24220 1Shopxo 1Shopxo Nov 21, 2024 Aug 17, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 ShopXO v1.8.1 has a command execution vulnerability. Attackers can use this vulnerability to execute arbitrary commands and gain control of the server.
CVE-2020-8233 2Opensuse Ui 3Backports Sle Edgeswitch FirmwareLeap Nov 21, 2024 Aug 17, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A command injection vulnerability exists in EdgeSwitch firmware <v1.9.0 that allowed an authenticated read-only user to execute arbitrary shell commands over the HTTP interface, allowing them to escalate privileges.
CVE-2020-13122 1Noviflow 1Noviware Nov 21, 2024 Aug 17, 2020 N/A· v4 8.8 HIGH· v3 8.0 HIGH· v2 The novish command-line interface, included in NoviFlow NoviWare before NW500.2.12 and deployed on NoviSwitch devices, is vulnerable to command injection in the "show status destination ipaddr" command. This could be use...Show more The novish command-line interface, included in NoviFlow NoviWare before NW500.2.12 and deployed on NoviSwitch devices, is vulnerable to command injection in the "show status destination ipaddr" command. This could be used by a read-only user (monitoring group) or admin to execute commands on the operating system.Show less
CVE-2020-16205 1Geutebrueck 11G Cam Ebc 2110 Firmware G Cam Ebc 2111 FirmwareG Cam Efd 2240 Firmware+8 more Nov 21, 2024 Aug 14, 2020 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 Using a specially crafted URL command, a remote authenticated user can execute commands as root on the G-Cam and G-Code (Firmware Versions 1.12.0.25 and prior as well as the limited Versions 1.12.13.2 and 1.12.14.5).
CVE-2020-11733 1Spirent 2Avalanche Testcenter Nov 21, 2024 Aug 13, 2020 N/A· v4 6.7 MEDIUM· v3 9.0 HIGH· v2 An issue was discovered on Spirent TestCenter and Avalanche appliance admin interface firmware. An attacker, who already has access to an SSH restricted shell, can achieve root access via shell metacharacters. The attack...Show more An issue was discovered on Spirent TestCenter and Avalanche appliance admin interface firmware. An attacker, who already has access to an SSH restricted shell, can achieve root access via shell metacharacters. The attacker can then, for example, read sensitive files such as appliance admin configuration source code. This affects Spirent TestCenter and Avalanche products which chassis version <= 5.08. The SSH restricted shell is available with default credentials.Show less
CVE-2020-12107 1Stengg 1Vpncrypt M10 Firmware Nov 21, 2024 Aug 12, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows command injection via a text field, which allow full control over this module's Operating System.
CVE-2020-17505 1Articatech 1Web Proxy Nov 21, 2024 Aug 12, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Artica Web Proxy 4.30.000000 allows an authenticated remote attacker to inject commands via the service-cmds parameter in cyrus.php. These commands are executed with root privileges via service_cmds_peform.
CVE-2020-17368 4Debian FedoraprojectFirejail Project+1 more 4Debian Linux FedoraFirejail+1 more Nov 21, 2024 Aug 11, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Firejail through 0.9.62 mishandles shell metacharacters during use of the --output or --output-stderr option, which may lead to command injection.
CVE-2020-13124 1Sabnzbd 1Sabnzbd Nov 21, 2024 Aug 11, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 SABnzbd 2.3.9 and 3.0.0Alpha2 has a command injection vulnerability in the web configuration interface that permits an authenticated user to execute arbitrary Python commands on the underlying operating system.
CVE-2020-14324 1Redhat 1Cloudforms Management Engine Nov 21, 2024 Aug 11, 2020 N/A· v4 9.1 CRITICAL· v3 6.5 MEDIUM· v2 A high severity vulnerability was found in all active versions of Red Hat CloudForms before 5.11.7.0. The out of band OS command injection vulnerability can be exploited by authenticated attacker while setuping conversio...Show more A high severity vulnerability was found in all active versions of Red Hat CloudForms before 5.11.7.0. The out of band OS command injection vulnerability can be exploited by authenticated attacker while setuping conversion host through Infrastructure Migration Solution. This flaw allows attacker to execute arbitrary commands on CloudForms server.Show less
CVE-2020-17352 1Sophos 1Xg Firewall Firmware Nov 21, 2024 Aug 7, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 Two OS command injection vulnerabilities in the User Portal of Sophos XG Firewall through 2020-08-05 potentially allow an authenticated attacker to remotely execute arbitrary code.
CVE-2020-11852 1Microfocus 1Secure Messaging Gateway Nov 21, 2024 Aug 7, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 DKIM key management page vulnerability on Micro Focus Secure Messaging Gateway (SMG). Affecting all SMG Appliance running releases prior to July 2020. The vulnerability could allow a logged in user with rights to generat...Show more DKIM key management page vulnerability on Micro Focus Secure Messaging Gateway (SMG). Affecting all SMG Appliance running releases prior to July 2020. The vulnerability could allow a logged in user with rights to generate DKIM key information to inject system commands into the call to the DKIM system command.Show less
CVE-2020-7361 1Easycorp 1Zentao Pro Nov 21, 2024 Aug 6, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 The EasyCorp ZenTao Pro application suffers from an OS command injection vulnerability in its '/pro/repo-create.html' component. After authenticating to the ZenTao dashboard, attackers may construct and send arbitrary OS...Show more The EasyCorp ZenTao Pro application suffers from an OS command injection vulnerability in its '/pro/repo-create.html' component. After authenticating to the ZenTao dashboard, attackers may construct and send arbitrary OS commands via the POST parameter 'path', and those commands will run in an elevated SYSTEM context on the underlying Windows operating system.Show less
CVE-2020-7357 1Cayintech 6Cms Cms 20 FirmwareCms 40 Firmware+3 more Nov 21, 2024 Aug 6, 2020 N/A· v4 9.9 CRITICAL· v3 9.0 HIGH· v2 Cayin CMS suffers from an authenticated OS semi-blind command injection vulnerability using default credentials. This can be exploited to inject and execute arbitrary shell commands as the root user through the 'NTP_Serv...Show more Cayin CMS suffers from an authenticated OS semi-blind command injection vulnerability using default credentials. This can be exploited to inject and execute arbitrary shell commands as the root user through the 'NTP_Server_IP' HTTP POST parameter in system.cgi page. This issue affects several branches and versions of the CMS application, including CME-SE, CMS-60, CMS-40, CMS-20, and CMS version 8.2, 8.0, and 7.5.Show less
CVE-2020-13404 1Quadra Informatique 1Atos/sips Nov 21, 2024 Aug 5, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 The ATOS/Sips (aka Atos-Magento) community module 3.0.0 to 3.0.5 for Magento allows command injection.
CVE-2020-13151 1Aerospike 1Aerospike Server Nov 21, 2024 Aug 5, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Aerospike Community Edition 4.9.0.5 allows for unauthenticated submission and execution of user-defined functions (UDFs), written in Lua, as part of a database query. It attempts to restrict code execution by disabling o...Show more Aerospike Community Edition 4.9.0.5 allows for unauthenticated submission and execution of user-defined functions (UDFs), written in Lua, as part of a database query. It attempts to restrict code execution by disabling os.execute() calls, but this is insufficient. Anyone with network access can use a crafted UDF to execute arbitrary OS commands on all nodes of the cluster at the permission level of the user running the Aerospike service.Show less

Previous 1...221222223...298 Next