CVE-2016-6649
EMC RecoverPoint versions before 4.4.1.1 and EMC RecoverPoint for Virtual Machines versions before 5.0 are affected by multiple command inje
CVSS
6.7
Medium
EPSS
0.9%
p57
KEV
—
Exploit Today
17
0-100
Published: Feb 3, 2017 · Last modified: Jul 10, 2026 · CWE-77
0.9%EPSS · 30 days0.9%
2026-06-302026-07-16
EMC RecoverPoint versions before 4.4.1.1 and EMC RecoverPoint for Virtual Machines versions before 5.0 are affected by multiple command injection vulnerabilities where a malicious administrator with configuration privileges may bypass the user interface and escalate his privileges to root.
- www.securityfocus.comhttp://www.securityfocus.com/archive/1/540058/30/0/threaded
- www.securityfocus.comhttp://www.securityfocus.com/bid/95821
- www.securitytracker.comhttp://www.securitytracker.com/id/1037727
- www.securityfocus.comhttp://www.securityfocus.com/archive/1/540058/30/0/threaded
- www.securityfocus.comhttp://www.securityfocus.com/bid/95821
- www.securitytracker.comhttp://www.securitytracker.com/id/1037727
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2026-422718.8 HIG99.6%
KEV—80BerriAI LiteLLM Command Injection Vulnerability2dCVE-2023-349609.8 CRI99.9%
——30A command injection vulnerability in the wsConvertPpt component of Chamilo v1.11.* up to v1.11.18 allows attackers to execute arbitrary commands via a SOAP API call with a crafted PowerPoint name.8dCVE-2023-376799.8 CRI99.9%
——30A remote command execution (RCE) vulnerability in NextGen Mirth Connect v4.3.0 allows attackers to execute arbitrary commands on the hosting server.8dCVE-2026-80379.6 CRI98.6%
——30OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in multiple command endpoints4dCVE-2022-457018.8 HIG98.5%
——30Arris TG2482A firmware through 9.1.103GEM9 allow Remote Code Execution (RCE) via the ping utility feature.8dCVE-2023-337828.8 HIG98.3%
——30D-Link DIR-842V2 v1.0.3 was discovered to contain a command injection vulnerability via the iperf3 diagnostics function.8d