The software of SIEM EventLog Analyzer is vulnerable because measures are not taken to neutralize special elements used in the operating system command. This vulnerability allows a perpetrator to execute arbitrary commands on the target system.

The vulnerability of the SIEM EventLog Analyzer software exists due to the lack of measures taken to neutralize special elements used in the operating system command. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands on the target system remotely...

CVE-2021-35032

The CVE-2021-35032 issue affects Zyxel GS1900 series switches running firmware 2.60, due to a flaw in the libsal.so component that allows an authenticated local user to execute arbitrary OS commands via a crafted function call. Affected product: Zyxel GS1900 switches; vulnerable surface: libsal.s...

Lantronix PremierWave 2050 OS Command Injection Vulnerability (CNVD-2022-04974)

The Lantronix PremierWave 2050 is an embedded Wi-Fi module manufactured by Lantronix.The Web Manager FsTFtp feature of the Lantronix PremierWave 2050 8.9.0.0R4 is vulnerable to an operating system command injection vulnerability that could be exploited by an attacker with a specially crafted HTTP...

Lantronix PremierWave 2050 OS Command Injection Vulnerability (CNVD-2022-04973)

The PremierWave 2050 is an embedded Wi-Fi module manufactured by Lantronix.The Web Manager SslGenerateCSR feature of the Lantronix PremierWave 2050 8.9.0.0R4 is vulnerable to OS command injection, which can be exploited by attackers to cause arbitrary command execution with the help of specially...

Acronis: SQL injection in https://demor.adr.acronis.com/ via the username parameter

Vulnerability description not provided...

CVE-2021-43981

The CVE-2021-43981 entry concerns mySCADA myPRO, affected up to version 8.20.0. The vulnerability is an OS command injection flaw introduced by a feature that sends emails, where a specific parameter can be exploited to inject arbitrary OS commands. Multiple connected sources (NVD entry, ICS advi...

CVE-2021-44453 mySCADA myPRO

mySCADA myPRO: Versions 8.20.0 and prior has a vulnerable debug interface which includes a ping utility, which may allow an attacker to inject arbitrary operating system commands...

CVE-2021-23198 mySCADA myPRO

mySCADA myPRO: Versions 8.20.0 and prior has a feature where the password can be specified, which may allow an attacker to inject arbitrary operating system commands through a specific parameter...

CVE-2021-23198

CVE-2021-23198 affects mySCADA myPRO before version 8.22.0. The vulnerability is an OS command injection stemming from a feature where a password/parameter can be specified, enabling an attacker to inject arbitrary operating system commands. Various connected sources (NVD/NVD-derived CVSS metrics...

CVE-2021-4144

TP-Link wifi router TL-WR802N V4JP, with firmware version prior to 211202, is vulnerable to OS command injection...

CVE-2021-4144

TP-Link wifi router TL-WR802N V4JP, with firmware version prior to 211202, is vulnerable to OS command injection...

CVE-2021-4144

TP-Link wifi router TL-WR802N V4JP, with firmware version prior to 211202, is vulnerable to OS command injection...

Command injection

TP-Link wifi router TL-WR802N V4JP, with firmware version prior to 211202, is vulnerable to OS command injection...

CVE-2021-4144

TP-Link wifi router TL-WR802N V4JP, with firmware version prior to 211202, is vulnerable to OS command injection...

CVE-2021-4144

The CVE-2021-4144 entry applies to TP-Link TL-WR802N V4(JP) with firmware versions prior to 211202, which are vulnerable to an OS command injection. According to JVN, exploitation requires legitimate access to the device web interface, allowing an authenticated user to execute OS commands. ENISA/...

mySCADA myPRO OS Command Injection Vulnerability (CNVD-2021-102828)

mySCADA myPRO is an HMI/SCADA system designed primarily for the visualization and control of industrial processes. An operating system command injection vulnerability exists in mySCADA myPRO, which can be exploited by an attacker to inject arbitrary operating system commands via specific paramete...

mySCADA myPRO OS Command Injection Vulnerability (CNVD-2021-102827)

mySCADA myPRO is an HMI/SCADA system designed primarily for the visualization and control of industrial processes. An operating system command injection vulnerability exists in mySCADA myPRO, which can be exploited by an attacker to inject arbitrary operating system commands via specific paramete...

mySCADA myPRO Operating System Command Injection Vulnerability

mySCADA myPRO is an HMI/SCADA system designed primarily for the visualization and control of industrial processes. An operating system command injection vulnerability exists in mySCADA myPRO, which can be exploited by an attacker to inject arbitrary operating system commands...

mySCADA myPRO OS Command Injection Vulnerability (CNVD-2021-102826)

mySCADA myPRO is an HMI/SCADA system designed primarily for the visualization and control of industrial processes. An operating system command injection vulnerability exists in mySCADA myPRO, which can be exploited by an attacker to inject arbitrary operating system commands via specific paramete...

mySCADA myPRO OS Command Injection Vulnerability (CNVD-2021-102825)

mySCADA myPRO is an HMI/SCADA system designed primarily for the visualization and control of industrial processes. An operating system command injection vulnerability exists in mySCADA myPRO, which can be exploited by an attacker to inject arbitrary operating system commands via specific paramete...