CWE-77

High likelihood

Improper Neutralization of Special Elements used in a Command ('Command Injection')

Parent: CWE-74 - Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.

3,570 vulnerabilities with CWE-77
CVE-2021-45616 CRITICAL
NETGEAR devices - Command Injection
CVSS 9.6
CVE-2021-45615 CRITICAL
NETGEAR CBR40/RBR750/RBR850/RBS750/RBS850/RBK752/RBK852/R7900P/R7960P/R8000P/R8300/R8500 - Command Injection
CVSS 9.6
CVE-2021-45614 CRITICAL
NETGEAR devices < various - Command Injection
CVSS 9.6
CVE-2021-45613 CRITICAL
NETGEAR devices - Command Injection
CVSS 9.6
CVE-2021-45612 CRITICAL
NETGEAR devices - Command Injection
CVSS 9.6
CVE-2021-45601 HIGH
NETGEAR CBR40 CBR750 RBK852 RBR850 RBS850 - Authenticated Command Injection
CVSS 8.4
CVE-2021-45600 HIGH
NETGEAR CBR750 < 4.6.3.6, RBK852 < 3.2.17.12, RBR850 < 3.2.17.12, RBS850 < 3.2.17.12 - Authenticated Command Injection
CVSS 8.4
CVE-2021-45599 HIGH
NETGEAR CBR40/RBR850/RBS850/RBK852 Firmware - Authenticated Command Injection
CVSS 8.4
CVE-2021-45598 HIGH
NETGEAR CBR40 CBR750 RBK852 RBR850 RBS850 Firmware - Authenticated Command Injection
CVSS 8.4
CVE-2021-45597 HIGH
NETGEAR CBR40/RBR850/RBS850/CBR750 Firmware - Authenticated Command Injection
CVSS 8.4
CVE-2021-45596 HIGH
NETGEAR CBR750/RBR750/RBS750/RBK752/RBR850/RBS850/RBK852 - Authenticated Command Injection
CVSS 8.4
CVE-2021-45595 HIGH
NETGEAR devices <2.7.3.22 - Command Injection
CVSS 7.6
CVE-2021-45594 HIGH
NETGEAR <2.7.3.22 - Command Injection
CVSS 8.4
CVE-2021-45593 HIGH
NETGEAR <2.7.3.22 - Command Injection
CVSS 8.4
CVE-2021-45592 HIGH
NETGEAR <3.2.16.6 - Command Injection
CVSS 8.4
CVE-2021-45591 HIGH
NETGEAR <3.2.16.6 - Command Injection
CVSS 8.4
CVE-2021-45590 HIGH
NETGEAR <3.2.16.6 - Command Injection
CVSS 8.4
CVE-2021-45589 HIGH
NETGEAR RBK752/RBR750/RBS750/RBK852/RBR850/RBS850 < 3.2.16.6 - Authenticated Command Injection
CVSS 8.4
CVE-2021-45588 HIGH
NETGEAR RBK752/RBR750/RBS750/RBK852/RBR850/RBS850 Firmware < 3.2.16.6 - Authenticated Command Injection
CVSS 8.4
CVE-2021-45587 HIGH
NETGEAR RBK752/RBR750/RBS750/RBK852/RBR850/RBS850 Firmware < 3.2.16.6 - Authenticated Command Injection
CVSS 8.4
CVE-2021-45586 HIGH
NETGEAR <3.2.16.6 - Command Injection
CVSS 8.4
CVE-2021-45585 HIGH
NETGEAR <3.2.16.6 - Command Injection
CVSS 8.4
CVE-2021-45584 HIGH
NETGEAR <3.2.16.6 - Command Injection
CVSS 8.4
CVE-2021-45583 HIGH
NETGEAR <3.2.16.6 - Command Injection
CVSS 8.4
CVE-2021-45582 HIGH
NETGEAR RBK752/RBR750/RBS750/RBK852/RBR850/RBS850 Firmware < 3.2.16.6 - Authenticated Command Injection
CVSS 8.4
Details
Vulnerabilities 3,570
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits