The vulnerability of InHand Networks InRouter302’s microprogramming software arises from the failure to take measures to neutralize the special elements used in the operating system command set. This vulnerability allows a perpetrator to execute arbitrary commands.

The vulnerability of InHand Networks InRouter302 microprogramming software exists due to the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of FortiWeb web applications’ network firewalls arises from the failure to take measures to neutralize special elements used in the operating system’s command set. This allows attackers to execute arbitrary code or perform arbitrary commands.

The vulnerability of FortiWeb web applications’ network firewalls exists due to the lack of measures taken to neutralize special elements used in the operating system’s command set. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or perform arbitrary commands usin...

The vulnerability of the Java Admin Console software tools for backup and data restoration in NetBackup Appliances and NetBackup allows a malicious actor to execute arbitrary commands as the root user.

The vulnerability of the Java Admin Console software tools for backup and recovery operations of NetBackup Appliances and NetBackup relates to the lack of measures taken to neutralize special elements used in operating system commands. Exploiting this vulnerability could allow a malicious actor t...

The vulnerability of the command-line interface (CLI) of the FortiTester software, a hardware-based diagnostic and network auditing tool, allows a perpetrator to execute arbitrary commands.

The vulnerability of the command-line interface CLI of the FortiTester software for diagnosing and auditing computer networks is related to the lack of measures taken to neutralize special elements used in operating system commands. Exploiting this vulnerability allows an attacker to execute...

The vulnerability in the web interface for controlling Hirschmann BAT-C2 wireless client software allows a hacker to execute arbitrary code.

The vulnerability of the web interface for managing WLAN client micro-programming software Hirschmann BAT-C2 exists due to the failure to take measures to neutralize special elements used in the operating system command. Exploiting this vulnerability allows a remote attacker to execute arbitrary...

The vulnerability of the graphical web interface for managing and monitoring ClusterLabs Hawk allows a perpetrator to execute arbitrary code.

The vulnerability of the graphical web interface for managing and monitoring ClusterLabs Hawk exists due to the lack of measures taken to neutralize special elements used in the operating system’s command set. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remote...

PT-2022-7694 · Drawio +1 · Drawio +1

Name of the Vulnerable Software and Affected Versions: drawio versions prior to 20.3.0 Description: The issue is related to the incorrect neutralization of special elements used in an OS command, which can allow a remote attacker to execute arbitrary commands. Recommendations: For versions prior ...

The vulnerability of the `import_sdk_file()` function implementation in the microprogramming software for VPN routers of the Robustel R1510 allows a hacker to execute arbitrary commands.

The vulnerability of the importsdkfile function in the Microprogramming Software for VPN Routers of Robustel R1510 relates to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrar...

The vulnerability of Trendnet TEW-831DR router microprogramming software lies in the lack of measures to neutralize special elements used in the operating system’s command set, allowing attackers to execute arbitrary commands.

The vulnerability of Trendnet TEW-831DR router microprogramming software is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

The vulnerability of Fortinet FortiWLM, a centralized management system for WLAN access points and LAN switches, arises due to the failure to take measures to eliminate special elements used in the operating system’s command set. This vulnerability allows a perpetrator to execute arbitrary code.

The vulnerability of Fortinet FortiWLM’s WLAN access point and LAN switch management systems exists due to the failure to take measures to neutralize special elements used in the operating system command. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a...

The software of SIEM EventLog Analyzer is vulnerable because measures are not taken to neutralize special elements used in the operating system command. This vulnerability allows a perpetrator to execute arbitrary commands on the target system.

The vulnerability of the SIEM EventLog Analyzer software exists due to the lack of measures taken to neutralize special elements used in the operating system command. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands on the target system remotely...

The vulnerability of the Cisco NX-OS operating system in Cisco Nexus 9000 Series switches allows a perpetrator to execute arbitrary commands.

The vulnerability of the Cisco NX-OS operating system for Cisco Nexus 9000 Series switches exists due to the lack of measures taken to neutralize the special elements used in the operating system’s commands. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of the mbConnect24serv component for clients to establish encrypted connections with mbDIALUP allows a perpetrator to enhance their privileges and execute arbitrary codes.

The vulnerability of the mbConnect24serv component for clients to establish encrypted connections with mbDIALUP is related to the lack of measures taken to neutralize special elements used in the operating system command. Exploiting this vulnerability can allow an attacker to enhance their...

The vulnerability of the CLI component of the Cisco IOS XR operating system, allowing a hacker to execute arbitrary commands

The vulnerability of the CLI component of the Cisco IOS XR operating system exists due to the lack of measures taken to neutralize the special elements used in the operating system’s commands. Exploiting this vulnerability can allow an attacker to execute arbitrary commands...

The vulnerability of the SonicWall Network Security Manager (NSM) application for managing network firewalls, threat detection, and risk assessment arises from its failure to neutralize special elements used in the operating system’s command set. This allows attackers to execute arbitrary commands.

The vulnerability of the SonicWall Network Security Manager application for managing network firewalls, detecting threats and risks is related to the failure to take measures to neutralize special elements used in the operating system’s command set. Exploiting this vulnerability allows a maliciou...

CVE-2021-21595

Dell EMC PowerScale OneFS versions 8.2.x - 9.1.1.x contain an improper neutralization of special elements used in an OS command. This vulnerability could allow the compadmin user to elevate privileges. This only impacts Smartlock WORM compliance mode clusters as a critical vulnerability and Dell...

The vulnerability of the CLI command-line interface implementation of the kdbg tool in Fortinet FortiAP access points allows a hacker to execute arbitrary commands.

The vulnerability of the CLI command-line interface implementation of the Fortinet FortiAP access point software relates to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability can allow an attacker to execute arbitrary...

The vulnerability of the traffic analysis module of the FortiSandbox system allows a perpetrator to execute arbitrary code or commands.

The vulnerability of the traffic analysis module of the FortiSandbox system exists because measures are not taken to neutralize the special elements used in the operating system’s command set. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or commands remotely...

The vulnerability of the Xstream Java library for converting objects to XML or JSON format arises from the lack of measures taken to eliminate special elements used in operating system commands. This allows attackers to delete any known files on the host.

The vulnerability of the Java library for converting objects to XML or JSON format, Xstream, exists because measures to neutralize special elements used in the operating system command are not taken. Exploiting this vulnerability can allow a malicious actor to delete any known files on the host...

The vulnerability in the web interface for managing application data collection and aggregation from Cisco DNA Spaces Connector controllers and access points arises from the lack of measures to neutralize special elements used in the operating system’s command set. This allows a malicious actor to enhance their privileges and execute arbitrary commands.

The vulnerability in the web interface for managing data collection and aggregation from Cisco DNA Spaces Connector controllers and access points is related to the failure to eliminate special elements used in the operating system’s command set. Exploiting this vulnerability can allow an attacker...