Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

CVEs (5,894)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2017-14479 1Mysql Mmm 1Mysql Multi Master Replication Manager Nov 21, 2024 May 9, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In the MMM::Agent::Helpers::Network::clear_ip function in MySQL Multi-Master Replication Manager (MMM) mmm_agentd 2.2.1 (for Solaris), a specially crafted MMM protocol message can cause a shell command injection resultin...Show more In the MMM::Agent::Helpers::Network::clear_ip function in MySQL Multi-Master Replication Manager (MMM) mmm_agentd 2.2.1 (for Solaris), a specially crafted MMM protocol message can cause a shell command injection resulting in arbitrary command execution with the privileges of the mmm\_agentd process. An attacker that can initiate a TCP session with mmm\_agentd can trigger this vulnerability.Show less
CVE-2017-14478 1Mysql Mmm 1Mysql Multi Master Replication Manager Nov 21, 2024 May 9, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In the MMM::Agent::Helpers::Network::clear_ip function in MySQL Multi-Master Replication Manager (MMM) mmm_agentd 2.2.1 (for Linux), a specially crafted MMM protocol message can cause a shell command injection resulting...Show more In the MMM::Agent::Helpers::Network::clear_ip function in MySQL Multi-Master Replication Manager (MMM) mmm_agentd 2.2.1 (for Linux), a specially crafted MMM protocol message can cause a shell command injection resulting in arbitrary command execution with the privileges of the mmm\_agentd process. An attacker that can initiate a TCP session with mmm\_agentd can trigger this vulnerability.Show less
CVE-2017-14477 1Mysql Mmm 1Mysql Multi Master Replication Manager Nov 21, 2024 May 9, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In the MMM::Agent::Helpers::Network::add_ip function in MySQL Multi-Master Replication Manager (MMM) mmm_agentd 2.2.1 (for FreeBSD), a specially crafted MMM protocol message can cause a shell command injection resulting...Show more In the MMM::Agent::Helpers::Network::add_ip function in MySQL Multi-Master Replication Manager (MMM) mmm_agentd 2.2.1 (for FreeBSD), a specially crafted MMM protocol message can cause a shell command injection resulting in arbitrary command execution with the privileges of the mmm\_agentd process. An attacker that can initiate a TCP session with mmm\_agentd can trigger this vulnerability.Show less
CVE-2017-14476 1Mysql Mmm 1Mysql Multi Master Replication Manager Nov 21, 2024 May 9, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In the MMM::Agent::Helpers::Network::add_ip function in MySQL Multi-Master Replication Manager (MMM) mmm_agentd 2.2.1 (for Solaris), a specially crafted MMM protocol message can cause a shell command injection resulting...Show more In the MMM::Agent::Helpers::Network::add_ip function in MySQL Multi-Master Replication Manager (MMM) mmm_agentd 2.2.1 (for Solaris), a specially crafted MMM protocol message can cause a shell command injection resulting in arbitrary command execution with the privileges of the mmm\_agentd process. An attacker that can initiate a TCP session with mmm\_agentd can trigger this vulnerability.Show less
CVE-2017-14475 1Mysql Mmm 1Mysql Multi Master Replication Manager Nov 21, 2024 May 9, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In the MMM::Agent::Helpers::Network::add_ip function in MySQL Multi-Master Replication Manager (MMM) mmm_agentd 2.2.1 (for Linux), a specially crafted MMM protocol message can cause a shell command injection resulting in...Show more In the MMM::Agent::Helpers::Network::add_ip function in MySQL Multi-Master Replication Manager (MMM) mmm_agentd 2.2.1 (for Linux), a specially crafted MMM protocol message can cause a shell command injection resulting in arbitrary command execution with the privileges of the mmm\_agentd process. An attacker that can initiate a TCP session with mmm\_agentd can trigger this vulnerability.Show less
CVE-2017-14474 1Mysql Mmm 1Mysql Multi Master Replication Manager Nov 21, 2024 May 9, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In the MMM::Agent::Helpers::_execute function in MySQL Multi-Master Replication Manager (MMM) mmm_agentd 2.2.1, a specially crafted MMM protocol message can cause a shell command injection resulting in arbitrary command...Show more In the MMM::Agent::Helpers::_execute function in MySQL Multi-Master Replication Manager (MMM) mmm_agentd 2.2.1, a specially crafted MMM protocol message can cause a shell command injection resulting in arbitrary command execution with the privileges of the mmm\_agentd process. An attacker that can initiate a TCP session with mmm\_agentd can trigger this vulnerability.Show less
CVE-2018-8866 1Vecna 1Vgo Firmware Nov 21, 2024 May 9, 2018 N/A· v4 8.8 HIGH· v3 8.3 HIGH· v2 In Vecna VGo Robot versions prior to 3.0.3.52164, an attacker on an adjacent network could perform command injection.
CVE-2018-1239 1Dell 2Emc Unity Operating Environment Emc Unityvsa Operating Environment Nov 21, 2024 May 8, 2018 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 Dell EMC Unity Operating Environment (OE) versions prior to 4.3.0.1522077968 are affected by multiple OS command injection vulnerabilities. A remote application admin user could potentially exploit the vulnerabilities to...Show more Dell EMC Unity Operating Environment (OE) versions prior to 4.3.0.1522077968 are affected by multiple OS command injection vulnerabilities. A remote application admin user could potentially exploit the vulnerabilities to execute arbitrary OS commands as system root on the system where Dell EMC Unity is installed.Show less
CVE-2018-10562 1Dasannetworks 1Gpon Router Firmware Nov 5, 2025 May 4, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered on Dasan GPON home routers. Command Injection can occur via the dest_host parameter in a diag_action=ping request to a GponForm/diag_Form URI. Because the router saves ping results in /tmp and tra...Show more An issue was discovered on Dasan GPON home routers. Command Injection can occur via the dest_host parameter in a diag_action=ping request to a GponForm/diag_Form URI. Because the router saves ping results in /tmp and transmits them to the user when the user revisits /diag.html, it's quite simple to execute commands and retrieve their output.Show less
CVE-2017-17020 1Dlink 3Dcs 5009 Firmware Dcs 5010 FirmwareDcs 5020l Firmware Nov 21, 2024 May 1, 2018 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 On D-Link DCS-5009 devices with firmware 1.08.11 and earlier, DCS-5010 devices with firmware 1.14.09 and earlier, and DCS-5020L devices with firmware before 1.15.01, command injection in alphapd (binary responsible for r...Show more On D-Link DCS-5009 devices with firmware 1.08.11 and earlier, DCS-5010 devices with firmware 1.14.09 and earlier, and DCS-5020L devices with firmware before 1.15.01, command injection in alphapd (binary responsible for running the camera's web server) allows remote authenticated attackers to execute code through sanitized /setSystemAdmin user input in the AdminID field being passed directly to a call to system.Show less
CVE-2018-10431 1D Link 1Dir 615 Firmware Nov 21, 2024 Apr 26, 2018 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 D-Link DIR-615 2.5.17 devices allow Remote Code Execution via shell metacharacters in the Host field of the System / Traceroute screen.
CVE-2018-3836 2Debian Leptonica 2Debian Linux Leptonica Nov 21, 2024 Apr 24, 2018 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 An exploitable command injection vulnerability exists in the gplotMakeOutput function of Leptonica 1.74.4. A specially crafted gplot rootname argument can cause a command injection resulting in arbitrary code execution....Show more An exploitable command injection vulnerability exists in the gplotMakeOutput function of Leptonica 1.74.4. A specially crafted gplot rootname argument can cause a command injection resulting in arbitrary code execution. An attacker can provide a malicious path as input to an application that passes attacker data to this function to trigger this vulnerability.Show less
CVE-2018-1144 1Belkin 1N750 Firmware Nov 21, 2024 Apr 19, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A remote unauthenticated user can execute commands as root in the Belkin N750 using firmware version 1.10.22 by sending a crafted HTTP request to proxy.cgi.
CVE-2018-1143 1Belkin 1N750 Firmware Nov 21, 2024 Apr 19, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A remote unauthenticated user can execute commands as root in the Belkin N750 using firmware version 1.10.22 by sending a crafted HTTP request to twonky_command.cgi.
CVE-2018-1167 1Spotify 1Spotify Nov 21, 2024 Apr 19, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Spotify Music Player 1.0.69.336. User interaction is required to exploit this vulnerability in that the target must visi...Show more This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Spotify Music Player 1.0.69.336. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of URI handlers. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code under the context of the current process. Was ZDI-CAN-5501.Show less
CVE-2018-8735 1Nagios 1Nagios Xi Nov 21, 2024 Apr 18, 2018 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 Remote command execution (RCE) vulnerability in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an attacker to execute arbitrary commands on the target system, aka OS command injection.
CVE-2017-14459 1Moxa 1Awk 3131a Firmware Nov 21, 2024 Apr 11, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 An exploitable OS Command Injection vulnerability exists in the Telnet, SSH, and console login functionality of Moxa AWK-3131A Industrial IEEE 802.11a/b/g/n wireless AP/bridge/client in firmware versions 1.4 to 1.7 (curr...Show more An exploitable OS Command Injection vulnerability exists in the Telnet, SSH, and console login functionality of Moxa AWK-3131A Industrial IEEE 802.11a/b/g/n wireless AP/bridge/client in firmware versions 1.4 to 1.7 (current). An attacker can inject commands via the username parameter of several services (SSH, Telnet, console), resulting in remote, unauthenticated, root-level operating system command execution.Show less
CVE-2018-0556 1Buffalo 1Wzr 1750dhp2 Firmware Nov 21, 2024 Apr 9, 2018 N/A· v4 8.8 HIGH· v3 8.3 HIGH· v2 Buffalo WZR-1750DHP2 Ver.2.30 and earlier allows an attacker to execute arbitrary OS commands via unspecified vectors.
CVE-2018-0545 1Lxr Project 1Lxr Nov 21, 2024 Apr 9, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 LXR version 1.0.0 to 2.3.0 allows remote attackers to execute arbitrary OS commands via unspecified vectors.
CVE-2018-9285 1Asus 11Rt Ac1900 Firmware Rt Ac2900 FirmwareRt Ac3100 Firmware+8 more Nov 21, 2024 Apr 4, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Main_Analysis_Content.asp in /apply.cgi on ASUS RT-AC66U, RT-AC68U, RT-AC86U, RT-AC88U, RT-AC1900, RT-AC2900, and RT-AC3100 devices before 3.0.0.4.384_10007; RT-N18U devices before 3.0.0.4.382.39935; RT-AC87U and RT-AC32...Show more Main_Analysis_Content.asp in /apply.cgi on ASUS RT-AC66U, RT-AC68U, RT-AC86U, RT-AC88U, RT-AC1900, RT-AC2900, and RT-AC3100 devices before 3.0.0.4.384_10007; RT-N18U devices before 3.0.0.4.382.39935; RT-AC87U and RT-AC3200 devices before 3.0.0.4.382.50010; and RT-AC5300 devices before 3.0.0.4.384.20287 allows OS command injection via the pingCNT and destIP fields of the SystemCmd variable.Show less

Previous 1...271272273...295 Next