CWE-88 (参数注入或修改) — Vulnerability Class 141

141 vulnerabilities classified as CWE-88 (参数注入或修改). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2022-29215	Argument Injection in RegionProtect — RegionProtect	7.5	High	2022-05-21
CVE-2021-43809	Local Code Execution through Argument Injection via dash leading git url parameter in Gemfile — rubygems	6.7	Medium	2021-12-08
CVE-2021-34718	Cisco IOS XR Software Arbitrary File Read and Write Vulnerability — Cisco IOS XR Software	8.1	High	2021-09-09
CVE-2021-3045	PAN-OS: OS Command Argument Injection in Web Interface — PAN-OS	4.9	Medium	2021-08-11
CVE-2021-3540	Ivanti MobileIron Core clish Restricted Shell Escape via Argument Injection — MobileIron Core	6.5	Medium	2021-07-22
CVE-2021-1531	Cisco Modeling Labs Web UI Command Injection Vulnerability — Cisco Modeling Labs	8.8	High	2021-05-22
CVE-2021-29472	Missing argument delimiter can lead to code execution via VCS repository URLs or source download URLs on systems with Mercurial in composer — composer	8.8	High	2021-04-27
CVE-2020-7851	Innorix File Transfer Solution File Download and Execution Vulnerability — INNORIX Agent.exe	7.8	High	2021-04-19
CVE-2021-1485	Cisco IOS XR Software Command Injection Vulnerability — Cisco IOS XR Software	6.6	Medium	2021-04-08
CVE-2020-7850	Douzone ActiveX File Download and Execution Vulnerability — NBBDownloader.ocx	7.8	High	2021-03-29
CVE-2021-21386	Improper Neutralization of Argument Delimiters in a Decompiling Package Process — apkleaks	9.3	Critical	2021-03-24
CVE-2021-21384	Null characters not escaped in shescape — shescape	6.3	Medium	2021-03-18
CVE-2021-24030	Facebook Gameroom 参数注入漏洞 — Facebook Gameroom	9.8	-	2021-03-10
CVE-2020-27129	Cisco SD-WAN vManage Software Command Injection Vulnerability — Cisco SD-WAN vManage	6.7	Medium	2020-11-06
CVE-2020-3380	Cisco Data Center Network Manager Privilege Escalation Vulnerability — Cisco Data Center Network Manager	6.7	-	2020-07-16
CVE-2020-7496	Schneider Electric EcoStruxure Operator Terminal Expert 参数注入漏洞 — EcoStruxure Operator Terminal Expert 3.1 Service Pack 1 and prior (formerly known as Vijeo XD)	7.8	-	2020-06-16
CVE-2020-1738	Ansible 参数注入漏洞 — ansible	3.9	Low	2020-03-16
CVE-2019-5012	Wacom driver 参数注入漏洞 — Wacom	7.8	-	2019-10-24
CVE-2019-5013	Wacom driver 参数注入漏洞 — Wacom	7.8	-	2019-10-24
CVE-2019-3931	Crestron Electronics AM-100和Crestron Electronics AM-101 参数注入漏洞 — Crestron AirMedia	8.8	-	2019-04-30
CVE-2017-1001003	Math.js 安全漏洞 — math.js	9.8	-	2017-11-27

Vulnerabilities classified as CWE-88 (参数注入或修改) represent 141 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-88 (参数注入或修改) — Vulnerability Class 141