Weaknesses of type CWE-77
2,525 resultsCVE-2026-46508HIGHTurborepo: VSCode Extension command injectionEPSS 0.2%CVE-2025-22237MEDIUMCVE-2025-22237 salt advisoryEPSS 0.2%CVE-2025-20278MEDIUMCisco Unified Communications Products Command Injection VulnerabilityEPSS 0.2%CVE-2025-4089MEDIUMPotential local code execution in "copy as cURL" commandEPSS 0.2%CVE-2026-43990HIGHJunoClaw: plugin-shell shell-metacharacter injection via shell wrapperEPSS 0.2%CVE-2022-39087MEDIUMIn network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges nEPSS 0.1%CVE-2022-39083MEDIUMIn network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges nEPSS 0.1%CVE-2022-39088MEDIUMIn network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges nEPSS 0.1%CVE-2022-39084MEDIUMIn network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges nEPSS 0.1%CVE-2022-39086MEDIUMIn network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges nEPSS 0.1%CVE-2022-39082MEDIUMIn network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges nEPSS 0.1%CVE-2022-39085MEDIUMIn network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges nEPSS 0.1%CVE-2022-39081MEDIUMIn network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges nEPSS 0.1%CVE-2025-57521MEDIUMBambu Studio 2.1.1.52 and earlier is affected by a vulnerability that allows arbitrary code execution during application startup. The applicEPSS 0.1%CVE-2025-5265MEDIUMPotential local code execution in “Copy as cURL” commandEPSS 0.1%CVE-2025-49823NONEConda Constructor Command Injection via Unsanitized User Input (Low)EPSS 0.1%CVE-2026-36365HIGHAn issue in Lymphatus caesium-image-compressor All versions up to and including commit 02da2c6 allows a local attacker to execute arbitrary EPSS 0.1%CVE-2026-57453MEDIUMVim: PowerShell Command Injection via Unescaped Filename in zip.vim ExtractionEPSS 0.1%CVE-2025-5264MEDIUMPotential local code execution in “Copy as cURL” commandEPSS 0.1%CVE-2025-1549MEDIUMWatchGuard Mobile VPN with SSL Local Privilege EscallationEPSS 0.1%