Commvault 11.32.x < 11.32.102 / 11.36.x < 11.36.60 Multiple Vulnerabilities (CV_2025_08_1-4)

The version of Commvault installed on the remote host is 11.32.x prior to 11.32.102 or 11.36.x prior to 11.36.60. It is, therefore, affected by multiple vulnerabilities as disclosed in Commvault advisories CV2025081, CV2025082, CV2025083 and CV2025084: - A security vulnerability has been identifi...

CVE-2012-10041

WAN Emulator v2.3 contains two unauthenticated command execution vulnerabilities. The result.php script calls shellexec with unsanitized input from the pc POST parameter, allowing remote attackers to execute arbitrary commands as the www-data user. The system also includes a SUID-root binary name...

CVE-2012-10041

WAN Emulator v2.3 contains two unauthenticated command execution vulnerabilities. The result.php script passes unsanitized input from the pc POST parameter to shell_exec(), allowing remote command execution as the www-data user. Additionally, a SUID-root binary named dosu is vulnerable to command...

Kubernetes: Git Arg Injection in kubernetes-sigs/release-sdk

A command injection vulnerability was found in the LSRemoteExec function of the kubernetes-sigs/release-sdk Git package. An attacker could exploit this vulnerability by injecting malicious arguments, allowing them to execute arbitrary commands. The impact of this vulnerability could be severe...

CVE-2017-17518

CVE-2017-17518 affects swt/motif/browser.c in White_dune (whitedune) 0.30.10, where strings are not validated before launching the program specified by the BROWSER environment variable. This could enable remote attackers to perform argument-injection attacks via a crafted URL. Notes in multiple s...