Command Injection is a attack_type tracked across 50 threat clusters and 58 intelligence report mentions on ThreatCluster. First observed October 27, 2025; most recent activity July 16, 2026.
Ubiquiti has issued security updates for five critical vulnerabilities in UniFi OS, including three maximum severity flaws (CVE-2026-34908, CVE-2026-34909, CVE-2026-34910) that allow remote attackers to execute…
Atlassian has announced two critical vulnerabilities in its Bamboo Data Center and Server product, including a severe OS command injection flaw (CVE-2026-21571) and a high-severity denial-of-service issue. The command…
Rocky Linux has released multiple security updates addressing critical vulnerabilities across various components, including 389-ds-base, HPLIP, and dracut. The vulnerabilities include a denial-of-service (DoS) issue in…
On June 21, 2026, Fedora released critical security updates for Python 3.13, addressing multiple vulnerabilities. The updates include fixes for CVE-2026-1502, CVE-2026-6100, CVE-2026-4786, CVE-2026-7210, and…
A critical command injection vulnerability in Zoom's Node Multimedia Routers (MMRs), tracked as CVE-2026-22844, has been disclosed. This flaw could permit meeting participants to execute arbitrary code on affected…
On May 18, 2026, SUSE released important updates for Python3 and Python310 addressing multiple vulnerabilities. Key issues include CVE-2026-1502, which allows HTTP client proxy tunnel header manipulation, and…
A command injection vulnerability was identified in the Ubuntu Kylin Software Center's D-Bus method, allowing unprivileged local users to execute arbitrary commands with root privileges. The flaw arises from the use of…
A critical vulnerability has been identified in Evince, the document viewer for Ubuntu, which could allow attackers to execute arbitrary code by opening a specially crafted PDF file. This issue arises from improper…
Two command injection vulnerabilities, CVE-2026-40176 and CVE-2026-40261, have been identified in Composer's Perforce VCS driver, allowing attackers to execute arbitrary commands on user systems. CVE-2026-40176,…
The AI tool OpenClaw has experienced a security incident stemming from a command injection vulnerability. This incident has raised concerns about the potential exploitation of the tool, which could affect various users…