CVE-2024-48895 20 Nov 2024
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in Rakuten Turbo 5G firmware version V1.3.18 a... Read more ➔
CVE-2024-52587 18 Nov 2024
StepSecurity's Harden-Runner provides network egress filtering and runtime security for GitHub-hosted and self-hosted runners. Versions of step-securi... Read more ➔
CVE-2023-20036 (v3: 9.9) 15 Nov 2024
A vulnerability in the web UI of Cisco IND could allow an authenticated, remote attacker to execute arbitrary commands with administrative privileges... Read more ➔
CVE-2022-20871 (v3: 6.3) 15 Nov 2024
A vulnerability in the web management interface of Cisco AsyncOS for Cisco Secure Web Appliance, formerly Cisco Web Security Appliance (WSA), could al... Read more ➔
CVE-2022-20652 (v3: 6.5) 15 Nov 2024
A vulnerability in the web-based management interface and in the API subsystem of Cisco Tetration could allow an authenticated, remote attacker to inj... Read more ➔
CVE-2022-1884 15 Nov 2024
A remote command execution vulnerability exists in gogs/gogs versions <=0.12.7 when deployed on a Windows server. The vulnerability arises due to i... Read more ➔
CVE-2024-11120 (v3: 9.8) 15 Nov 2024
Certain EOL GeoVision devices have an OS Command Injection vulnerability. Unauthenticated remote attackers can exploit this vulnerability to inject an... Read more ➔
CVE-2024-4343 14 Nov 2024
A Python command injection vulnerability exists in the `SagemakerLLM` class's `complete()` method within `./private_gpt/components/llm/custom/sagemake... Read more ➔
CVE-2024-32118 12 Nov 2024
Multiple improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerabilities [CWE-78] in Fortinet FortiManager... Read more ➔
CVE-2024-52010 12 Nov 2024
Zoraxy is a general purpose HTTP reverse proxy and forwarding tool. A command injection vulnerability in the Web SSH feature allows an authenticated a... Read more ➔
CVE-2024-46890 (v3: 9.1) 12 Nov 2024
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 3). The affected application does not properly validate input sent... Read more ➔
CVE-2024-45827 12 Nov 2024
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in Mesh Wi-Fi router RP562B firmware version v... Read more ➔
CVE-2024-11066 (v3: 7.2) 11 Nov 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arb... Read more ➔
CVE-2024-11065 (v3: 7.2) 11 Nov 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arb... Read more ➔
CVE-2024-11064 (v3: 7.2) 11 Nov 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arb... Read more ➔
CVE-2024-11063 (v3: 7.2) 11 Nov 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arb... Read more ➔
CVE-2024-11062 11 Nov 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arb... Read more ➔
CVE-2024-11046 10 Nov 2024
A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been classified as critical. Affected is the function upgrade_filter_asp of the file /u... Read more ➔
CVE-2024-45763 8 Nov 2024
Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Inject... Read more ➔
CVE-2024-45765 8 Nov 2024
Dell Enterprise SONiC OS, version(s) 4.1.x, 4.2.x, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command Inject... Read more ➔
CVE-2024-10966 7 Nov 2024
A vulnerability, which was classified as critical, has been found in TOTOLINK X18 9.1.0cu.2024_B20220329. Affected by this issue is some unknown funct... Read more ➔
CVE-2024-10915 6 Nov 2024
A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been rated as critical. Affected by this issue is... Read more ➔
CVE-2024-10914 6 Nov 2024
A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been declared as critical. Affected by this vulner... Read more ➔
CVE-2024-51661 4 Nov 2024
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in David Lingren Media Library Assistant allo... Read more ➔
CVE-2024-10653 (v3: 10) 1 Nov 2024
IDExpert from CHANGING Information Technology does not properly validate a specific parameter in the administrator interface, allowing remote attacker... Read more ➔