Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,951)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-2007 1Paloaltonetworks 1Pan Os Nov 21, 2024 May 13, 2020 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 An OS command injection vulnerability in the management server component of PAN-OS allows an authenticated user to potentially execute arbitrary commands with root privileges. This issue affects: All PAN-OS 7.1 versions;...Show more An OS command injection vulnerability in the management server component of PAN-OS allows an authenticated user to potentially execute arbitrary commands with root privileges. This issue affects: All PAN-OS 7.1 versions; PAN-OS 8.1 versions earlier than 8.1.14; PAN-OS 9.0 versions earlier than 9.0.7.Show less
CVE-2020-10795 1Gira 1Tks Ip Gateway Firmware Nov 21, 2024 May 7, 2020 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 Gira TKS-IP-Gateway 4.0.7.7 is vulnerable to authenticated remote code execution via the backup functionality of the web frontend. This can be combined with CVE-2020-10794 for remote root access.
CVE-2020-4428 1Ibm 1Data Risk Manager Nov 4, 2025 May 7, 2020 N/A· v4 9.1 CRITICAL· v3 9.0 HIGH· v2 IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated attacker to execute arbitrary commands on the system. IBM X-Force ID: 180533.
CVE-2020-7805 1Infomark 2Iml500 Firmware Iml520 Firmware Nov 21, 2024 May 7, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 An issue was discovered on KT Slim egg IML500 (R7283, R8112, R8424) and IML520 (R8112, R8368, R8411) wifi device. This issue is a command injection allowing attackers to execute arbitrary OS commands.
CVE-2020-7646 1Curlrequest Project 1Curlrequest Nov 21, 2024 May 7, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 curlrequest through 1.0.1 allows reading any file by populating the file parameter with user input.
CVE-2020-6651 1Eaton 1Intelligent Power Manager Nov 21, 2024 May 7, 2020 N/A· v4 7.3 HIGH· v3 6.0 MEDIUM· v2 Improper Input Validation in Eaton's Intelligent Power Manager (IPM) v 1.67 & prior on file name during configuration file import functionality allows attackers to perform command injection or code execution via speciall...Show more Improper Input Validation in Eaton's Intelligent Power Manager (IPM) v 1.67 & prior on file name during configuration file import functionality allows attackers to perform command injection or code execution via specially crafted file names while uploading the configuration file in the application.Show less
CVE-2020-5332 1Rsa 1Archer Nov 21, 2024 May 4, 2020 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 RSA Archer, versions prior to 6.7 P3 (6.7.0.3), contain a command injection vulnerability. AN authenticated malicious user with administrator privileges could potentially exploit this vulnerability to execute arbitrary c...Show more RSA Archer, versions prior to 6.7 P3 (6.7.0.3), contain a command injection vulnerability. AN authenticated malicious user with administrator privileges could potentially exploit this vulnerability to execute arbitrary commands on the system where the vulnerable application is deployed.Show less
CVE-2020-12109 1Tp Link 7Nc200 Firmware Nc210 FirmwareNc220 Firmware+4 more Nov 21, 2024 May 4, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Certain TP-Link devices allow Command Injection. This affects NC200 2.1.9 build 200225, NC210 1.0.9 build 200304, NC220 1.3.0 build 200304, NC230 1.3.0 build 200304, NC250 1.3.0 build 200304, NC260 1.5.2 build 200304, an...Show more Certain TP-Link devices allow Command Injection. This affects NC200 2.1.9 build 200225, NC210 1.0.9 build 200304, NC220 1.3.0 build 200304, NC230 1.3.0 build 200304, NC250 1.3.0 build 200304, NC260 1.5.2 build 200304, and NC450 1.5.3 build 200304.Show less
CVE-2020-12641 2Opensuse Roundcube 3Backports Sle LeapWebmail Nov 4, 2025 May 4, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 rcube_image.php in Roundcube Webmail before 1.4.4 allows attackers to execute arbitrary code via shell metacharacters in a configuration setting for im_convert_path or im_identify_path.
CVE-2020-12111 1Tp Link 2Nc260 Firmware Nc450 Firmware Nov 21, 2024 May 4, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Certain TP-Link devices allow Command Injection. This affects NC260 1.5.2 build 200304 and NC450 1.5.3 build 200304.
CVE-2020-7645 1Google 1Chrome Launcher Nov 21, 2024 May 2, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 All versions of chrome-launcher allow execution of arbitrary commands, by controlling the $HOME environment variable in Linux operating systems.
CVE-2020-7351 1Netfortris 1Trixbox Nov 21, 2024 May 1, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 An OS Command Injection vulnerability in the endpoint_devicemap.php component of Fonality Trixbox Community Edition allows an attacker to execute commands on the underlying operating system as the "asterisk" user. Note t...Show more An OS Command Injection vulnerability in the endpoint_devicemap.php component of Fonality Trixbox Community Edition allows an attacker to execute commands on the underlying operating system as the "asterisk" user. Note that Trixbox Community Edition has been unsupported by the vendor since 2012. This issue affects: Fonality Trixbox Community Edition, versions 1.2.0 through 2.8.0.4. Versions 1.0 and 1.1 are unaffected.Show less
CVE-2020-11016 1Intelmq Manager Project 1Intelmq Manager Nov 21, 2024 Apr 30, 2020 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 IntelMQ Manager from version 1.1.0 and before version 2.1.1 has a vulnerability where the backend incorrectly handled messages given by user-input in the "send" functionality of the Inspect-tool of the Monitor component....Show more IntelMQ Manager from version 1.1.0 and before version 2.1.1 has a vulnerability where the backend incorrectly handled messages given by user-input in the "send" functionality of the Inspect-tool of the Monitor component. An attacker with access to the IntelMQ Manager could possibly use this issue to execute arbitrary code with the privileges of the webserver. Version 2.1.1 fixes the vulnerability.Show less
CVE-2019-19220 1Bmcsoftware 1Control M/agent Nov 21, 2024 Apr 30, 2020 N/A· v4 8.8 HIGH· v3 8.5 HIGH· v2 BMC Control-M/Agent 7.0.00.000 allows OS Command Injection (issue 2 of 2).
CVE-2019-19217 1Bmcsoftware 1Control M/agent Nov 21, 2024 Apr 30, 2020 N/A· v4 8.8 HIGH· v3 8.5 HIGH· v2 BMC Control-M/Agent 7.0.00.000 allows OS Command Injection.
CVE-2019-5623 1Accellion 1File Transfer Appliance Nov 21, 2024 Apr 29, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Accellion File Transfer Appliance version FTA_8_0_540 suffers from an instance of CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection').
CVE-2016-11061 1Xerox 25Workcentre 3655 Firmware Workcentre 3655i FirmwareWorkcentre 5865 Firmware+22 more Nov 21, 2024 Apr 29, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, and 7970i devices before 073.xxx.086.15410 do not properly escape parameters in the support/remoteUI/configrui.php scri...Show more Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, and 7970i devices before 073.xxx.086.15410 do not properly escape parameters in the support/remoteUI/configrui.php script, which can allow an unauthenticated attacker to execute OS commands on the device.Show less
CVE-2020-7804 1Handysoft 1Groupware Nov 21, 2024 Apr 29, 2020 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 ActiveX Control(HShell.dll) in Handy Groupware 1.7.3.1 for Windows 7, 8, and 10 allows an attacker to execute arbitrary command via the ShellExec method.
CVE-2020-12246 1Beeline 1Smart Box Firmware Nov 21, 2024 Apr 29, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Beeline Smart Box 2.0.38 routers allow "Advanced settings > Other > Diagnostics" OS command injection via the Ping ping_ipaddr parameter, the Nslookup nslookup_ipaddr parameter, or the Traceroute traceroute_ipaddr parame...Show more Beeline Smart Box 2.0.38 routers allow "Advanced settings > Other > Diagnostics" OS command injection via the Ping ping_ipaddr parameter, the Nslookup nslookup_ipaddr parameter, or the Traceroute traceroute_ipaddr parameter.Show less
CVE-2018-21225 1Netgear 14D7000 Firmware D7800 FirmwareD8500 Firmware+11 more Nov 21, 2024 Apr 28, 2020 N/A· v4 6.8 MEDIUM· v3 5.2 MEDIUM· v2 Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7000 before 1.0.1.60, D7800 before 1.0.1.34, D8500 before 1.0.3.39, R6700 before 1.0.1.30, R6700v2 before 1.2.0.16, R6800...Show more Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D7000 before 1.0.1.60, D7800 before 1.0.1.34, D8500 before 1.0.3.39, R6700 before 1.0.1.30, R6700v2 before 1.2.0.16, R6800 before 1.2.0.16, R6900 before 1.0.1.30, R6900P before 1.2.0.22, R6900v2 before 1.2.0.16, R7000 before 1.0.9.12, R7000P before 1.2.0.22, R7500v2 before 1.0.3.20, R7800 before 1.0.2.44, R8300 before 1.0.2.106, R8500 before 1.0.2.106, and R9000 before 1.0.2.52.Show less

Previous 1...228229230...298 Next