CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')
Description
The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.
Hierarchy (View 1000)
Related attack patterns (CAPEC)
CAPEC-136 · CAPEC-15 · CAPEC-183 · CAPEC-248 · CAPEC-40 · CAPEC-43 · CAPEC-75 · CAPEC-76
CVEs mapped to this weakness (1,552)
page 66 of 78| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-52291 | 0.00 | — | 0.02 | Jul 17, 2024 | In streampark, the project module integrates Maven's compilation capabilities. The input parameter validation is not strict, allowing attackers to insert commands for remote command execution, The prerequisite for a successful attack is that the user needs to log in to the… | |||
| CVE-2024-6257 | — | 0.00 | — | 0.01 | Jun 25, 2024 | HashiCorp’s go-getter library can be coerced into executing Git update on an existing maliciously modified Git Configuration, potentially leading to arbitrary code execution. | ||
| CVE-2024-34352 | 0.00 | — | 0.01 | May 9, 2024 | 1Panel is an open source Linux server operation and maintenance management panel. Prior to v1.10.3-lts, there are many command injections in the project, and some of them are not well filtered, leading to arbitrary file writes, and ultimately leading to RCEs. The mirror… | |||
| CVE-2024-3271 | 0.00 | — | 0.03 | Apr 16, 2024 | A command injection vulnerability exists in the run-llama/llama_index repository, specifically within the safe_eval function. Attackers can bypass the intended security mechanism, which checks for the presence of underscores in code generated by LLM, to execute arbitrary code.… | |||
| CVE-2024-1540 | 0.00 | — | 0.02 | Mar 27, 2024 | A command injection vulnerability exists in the deploy+test-visual.yml workflow of the gradio-app/gradio repository, due to improper neutralization of special elements used in a command. This vulnerability allows attackers to execute unauthorized commands, potentially leading to… | |||
| CVE-2023-41334 | — | 0.00 | — | 0.01 | Mar 18, 2024 | Astropy is a project for astronomy in Python that fosters interoperability between Python astronomy packages. Version 5.3.2 of the Astropy core package is vulnerable to remote code execution due to improper input validation in the `TranformGraph().to_dot_graph` function. A… | ||
| CVE-2024-2352 | — | 0.00 | — | 0.03 | Mar 10, 2024 | A vulnerability, which was classified as critical, has been found in 1Panel up to 1.10.1-lts. Affected by this issue is the function baseApi.UpdateDeviceSwap of the file /api/v1/toolbox/device/update/swap. The manipulation of the argument Path with the input 123123123\nopen -a… | ||
| CVE-2024-0817 | 0.00 | — | 0.01 | Mar 7, 2024 | Command injection in IrGraph.draw in paddlepaddle/paddle 2.6.0 | |||
| CVE-2024-22188 | — | 0.00 | — | 0.02 | Mar 5, 2024 | TYPO3 before 13.0.1 allows an authenticated admin user (with system maintainer privileges) to execute arbitrary shell commands (with the privileges of the web server) via a command injection vulnerability in form fields of the Install Tool. The fixed versions are 8.7.57 ELTS,… | ||
| CVE-2024-23346 | — | 0.00 | — | 0.04 | Feb 21, 2024 | Pymatgen (Python Materials Genomics) is an open-source Python library for materials analysis. A critical security vulnerability exists in the `JonesFaithfulTransformation.from_transformation_str()` method within the `pymatgen` library prior to version 2024.2.20. This method… | ||
| CVE-2024-21488 | — | 0.00 | — | 0.03 | Jan 30, 2024 | Versions of the package network before 0.7.0 are vulnerable to Arbitrary Command Injection due to use of the child_process exec function without input sanitization. If (attacker-controlled) user input is given to the mac_address_for function of the package, it is possible for… | ||
| CVE-2024-22198 | 0.00 | — | 0.04 | Jan 11, 2024 | Nginx-UI is a web interface to manage Nginx configurations. It is vulnerable to arbitrary command execution by abusing the configuration settings. The `Home > Preference` page exposes a list of system settings such as `Run Mode`, `Jwt Secret`, `Node Secret` and `Terminal Start… | |||
| CVE-2024-22197 | 0.00 | — | 0.02 | Jan 11, 2024 | Nginx-ui is online statistics for Server Indicators Monitor CPU usage, memory usage, load average, and disk usage in real-time. The `Home > Preference` page exposes a small list of nginx settings such as `Nginx Access Log Path` and `Nginx Error Log Path`. However, the API… | |||
| CVE-2023-52137 | 0.00 | — | 0.03 | Dec 29, 2023 | The [`tj-actions/verify-changed-files`](https://github.com/tj-actions/verify-changed-files) action allows for command injection in changed filenames, allowing an attacker to execute arbitrary code and potentially leak secrets. The [`verify-changed-files`](https://github.com/tj-ac… | |||
| CVE-2023-51664 | 0.00 | — | 0.03 | Dec 27, 2023 | tj-actions/changed-files is a Github action to retrieve all files and directories. Prior to 41.0.0, the `tj-actions/changed-files` workflow allows for command injection in changed filenames, allowing an attacker to execute arbitrary code and potentially leak secrets. This issue… | |||
| CVE-2023-6940 | 0.00 | — | 0.01 | Dec 19, 2023 | with only one user interaction(download a malicious config), attackers can gain full command execution on the victim system. | |||
| CVE-2023-49898 | 0.00 | — | 0.02 | Dec 15, 2023 | In streampark, there is a project module that integrates Maven's compilation capability. However, there is no check on the compilation parameters of Maven. allowing attackers to insert commands for remote command execution, The prerequisite for a successful attack is that the… | |||
| CVE-2023-6572 | 0.00 | — | 0.02 | Dec 14, 2023 | Command Injection in GitHub repository gradio-app/gradio prior to main. | |||
| CVE-2013-2513 | — | 0.00 | — | 0.02 | Dec 12, 2023 | The flash_tool gem through 0.6.0 for Ruby allows command execution via shell metacharacters in the name of a downloaded file. | ||
| CVE-2023-49210 | 0.00 | — | 0.02 | Nov 23, 2023 | The openssl (aka node-openssl) NPM package through 2.0.0 was characterized as "a nonsense wrapper with no real purpose" by its author, and accepts an opts argument that contains a verb field (used for command execution). NOTE: This vulnerability only affects products that are no… |
- CVE-2023-52291Jul 17, 2024risk 0.00cvss —epss 0.02
In streampark, the project module integrates Maven's compilation capabilities. The input parameter validation is not strict, allowing attackers to insert commands for remote command execution, The prerequisite for a successful attack is that the user needs to log in to the…
- CVE-2024-6257Jun 25, 2024risk 0.00cvss —epss 0.01
HashiCorp’s go-getter library can be coerced into executing Git update on an existing maliciously modified Git Configuration, potentially leading to arbitrary code execution.
- CVE-2024-34352May 9, 2024risk 0.00cvss —epss 0.01
1Panel is an open source Linux server operation and maintenance management panel. Prior to v1.10.3-lts, there are many command injections in the project, and some of them are not well filtered, leading to arbitrary file writes, and ultimately leading to RCEs. The mirror…
- CVE-2024-3271Apr 16, 2024risk 0.00cvss —epss 0.03
A command injection vulnerability exists in the run-llama/llama_index repository, specifically within the safe_eval function. Attackers can bypass the intended security mechanism, which checks for the presence of underscores in code generated by LLM, to execute arbitrary code.…
- CVE-2024-1540Mar 27, 2024risk 0.00cvss —epss 0.02
A command injection vulnerability exists in the deploy+test-visual.yml workflow of the gradio-app/gradio repository, due to improper neutralization of special elements used in a command. This vulnerability allows attackers to execute unauthorized commands, potentially leading to…
- CVE-2023-41334Mar 18, 2024risk 0.00cvss —epss 0.01
Astropy is a project for astronomy in Python that fosters interoperability between Python astronomy packages. Version 5.3.2 of the Astropy core package is vulnerable to remote code execution due to improper input validation in the `TranformGraph().to_dot_graph` function. A…
- CVE-2024-2352Mar 10, 2024risk 0.00cvss —epss 0.03
A vulnerability, which was classified as critical, has been found in 1Panel up to 1.10.1-lts. Affected by this issue is the function baseApi.UpdateDeviceSwap of the file /api/v1/toolbox/device/update/swap. The manipulation of the argument Path with the input 123123123\nopen -a…
- CVE-2024-0817Mar 7, 2024risk 0.00cvss —epss 0.01
Command injection in IrGraph.draw in paddlepaddle/paddle 2.6.0
- CVE-2024-22188Mar 5, 2024risk 0.00cvss —epss 0.02
TYPO3 before 13.0.1 allows an authenticated admin user (with system maintainer privileges) to execute arbitrary shell commands (with the privileges of the web server) via a command injection vulnerability in form fields of the Install Tool. The fixed versions are 8.7.57 ELTS,…
- CVE-2024-23346Feb 21, 2024risk 0.00cvss —epss 0.04
Pymatgen (Python Materials Genomics) is an open-source Python library for materials analysis. A critical security vulnerability exists in the `JonesFaithfulTransformation.from_transformation_str()` method within the `pymatgen` library prior to version 2024.2.20. This method…
- CVE-2024-21488Jan 30, 2024risk 0.00cvss —epss 0.03
Versions of the package network before 0.7.0 are vulnerable to Arbitrary Command Injection due to use of the child_process exec function without input sanitization. If (attacker-controlled) user input is given to the mac_address_for function of the package, it is possible for…
- CVE-2024-22198Jan 11, 2024risk 0.00cvss —epss 0.04
Nginx-UI is a web interface to manage Nginx configurations. It is vulnerable to arbitrary command execution by abusing the configuration settings. The `Home > Preference` page exposes a list of system settings such as `Run Mode`, `Jwt Secret`, `Node Secret` and `Terminal Start…
- CVE-2024-22197Jan 11, 2024risk 0.00cvss —epss 0.02
Nginx-ui is online statistics for Server Indicators Monitor CPU usage, memory usage, load average, and disk usage in real-time. The `Home > Preference` page exposes a small list of nginx settings such as `Nginx Access Log Path` and `Nginx Error Log Path`. However, the API…
- CVE-2023-52137Dec 29, 2023risk 0.00cvss —epss 0.03
The [`tj-actions/verify-changed-files`](https://github.com/tj-actions/verify-changed-files) action allows for command injection in changed filenames, allowing an attacker to execute arbitrary code and potentially leak secrets. The [`verify-changed-files`](https://github.com/tj-ac…
- CVE-2023-51664Dec 27, 2023risk 0.00cvss —epss 0.03
tj-actions/changed-files is a Github action to retrieve all files and directories. Prior to 41.0.0, the `tj-actions/changed-files` workflow allows for command injection in changed filenames, allowing an attacker to execute arbitrary code and potentially leak secrets. This issue…
- CVE-2023-6940Dec 19, 2023risk 0.00cvss —epss 0.01
with only one user interaction(download a malicious config), attackers can gain full command execution on the victim system.
- CVE-2023-49898Dec 15, 2023risk 0.00cvss —epss 0.02
In streampark, there is a project module that integrates Maven's compilation capability. However, there is no check on the compilation parameters of Maven. allowing attackers to insert commands for remote command execution, The prerequisite for a successful attack is that the…
- CVE-2023-6572Dec 14, 2023risk 0.00cvss —epss 0.02
Command Injection in GitHub repository gradio-app/gradio prior to main.
- CVE-2013-2513Dec 12, 2023risk 0.00cvss —epss 0.02
The flash_tool gem through 0.6.0 for Ruby allows command execution via shell metacharacters in the name of a downloaded file.
- CVE-2023-49210Nov 23, 2023risk 0.00cvss —epss 0.02
The openssl (aka node-openssl) NPM package through 2.0.0 was characterized as "a nonsense wrapper with no real purpose" by its author, and accepts an opts argument that contains a verb field (used for command execution). NOTE: This vulnerability only affects products that are no…