CWE-78

High likelihood

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Parent: CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

6,041 vulnerabilities with CWE-78
CVE-2018-0307 HIGH
Cisco NX-OS 6.0-7.3(3)n1(1) - Authenticated OS Command Injection via CLI Command Arguments
CVSS 7.8
CVE-2018-0293 HIGH
Cisco NX-OS 6.0-7.3(3)n1(1) - Authenticated OS Command Injection via RBAC Privilege Escalation
CVSS 8.8
CVE-2018-6211 HIGH
D-Link DIR-620 Firmware <=2.0.22 - OS Command Injection via index.cgi
CVSS 7.2
CVE-2018-12591 HIGH
Ubiquiti Networks EdgeSwitch <1.7.3 - Code Injection
CVSS 7.2
CVE-2018-12268 CRITICAL
acccheck <0.2.1 - Command Injection
CVSS 9.8
CVE-2018-6961 HIGH KEV
VMware NSX SD-WAN by VeloCloud < 3.1.0 - Remote Code Execution via Local Web UI Command Injection
CVSS 8.1
CVE-2018-11229 CRITICAL
Crestron TSW Series < 2.001.0037.001 - Unauthenticated RCE via Command Injection
CVSS 9.8
CVE-2018-0274 HIGH
Cisco Network Services Orchestrator <=4.4.2.0 Authenticated RCE via CLI Parser
CVSS 8.8
CVE-2018-6662 HIGH
McAfee Management of Native Encryption < 4.1.4 - Privilege Escalation via Crafted User Input
CVSS 7.8
CVE-2018-11189 HIGH
Quest Disk Backup < 4.0.3.1 - Privilege Escalation
CVSS 8.8
CVE-2018-11188 HIGH
Quest Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
CVE-2018-11187 HIGH
Quest Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
CVE-2018-11186 HIGH
Quest Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
CVE-2018-11185 HIGH
Quest Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
CVE-2018-11184 HIGH
Quest Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 7.2
CVE-2018-11183 HIGH
Quest Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
CVE-2018-11182 HIGH
Quest Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
CVE-2018-11181 HIGH
Quest Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
CVE-2018-11180 HIGH
Quest DR Series Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
CVE-2018-11179 HIGH
Quest Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
CVE-2018-11178 HIGH
Quest Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
CVE-2018-11177 HIGH
Quest Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
CVE-2018-11176 HIGH
Quest DR Series Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
CVE-2018-11175 HIGH
Quest Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
CVE-2018-11174 HIGH
Quest Disk Backup < 4.0.3.1 - OS Command Injection
CVSS 8.8
Details
Vulnerabilities 6,041
Exploit Likelihood High