Weaknesses of type CWE-77

2,524 results
CVE-2024-22529CRITICALTOTOLINK X2000R_V2 V2.0.0-B20230727.10434 has a command injection vulnerability in the sub_449040 (handle function of formUploadFile) of /biEPSS 1.7%CVE-2023-33722HIGHEDIMAX BR-6288ACL v1.12 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the pppUserName parameter.EPSS 1.7%CVE-2025-45490MEDIUMLinksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the runtime.ddnsStatus DynDNS function via the passwoEPSS 1.7%CVE-2026-5663MEDIUMOFFIS DCMTK storescp storescp.cc executeOnEndOfStudy os command injectionEPSS 1.7%CVE-2022-28220STARTTLS command injection in Apache JAMESEPSS 1.7%CVE-2023-31460HIGHA vulnerability in the Connect Mobility Router component of MiVoice Connect versions 9.6.2208.101 and earlier could allow an authenticated aEPSS 1.7%CVE-2023-6572CRITICALCommand Injection in gradio-app/gradioEPSS 1.7%CVE-2019-15595A privilege escalation exists in UniFi Video Controller =<3.10.6 that would allow an attacker on the local machine to run arbitrary commandsEPSS 1.7%CVE-2026-7064MEDIUMAgentDeskAI browser-tools-mcp browser-connector.ts os command injectionEPSS 1.7%CVE-2023-22790HIGHAuthenticated Remote Command Execution in Aruba InstantOS or ArubaOS 10 Command Line InterfaceEPSS 1.7%CVE-2023-22788HIGHAuthenticated Remote Command Execution in Aruba InstantOS or ArubaOS 10 Command Line InterfaceEPSS 1.7%CVE-2023-20865HIGHVMware Aria Operations for Logs contains a command injection vulnerability. A malicious actor with administrative privileges in VMware Aria EPSS 1.7%CVE-2026-2740HIGHRemote Code ExecutionEPSS 1.7%CVE-2025-55637MEDIUMReolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 was discovered to contain a command injection vuEPSS 1.7%CVE-2024-3871CRITICALAuthenticated Remote Command Injection in Delta Electronics DVWEPSS 1.7%CVE-2023-26295CRITICALPrevious versions of HP Device Manager (prior to HPDM 5.0.10) could potentially allow command injection and/or elevation of privileges.EPSS 1.7%CVE-2026-6980MEDIUMDivyanshu-hash GitPilot-MCP main.py repo_path command injectionEPSS 1.7%CVE-2026-2629MEDIUMjishi node-sonos-http-api TTS Provider mac-os.js Promise os command injectionEPSS 1.7%CVE-2020-2492HIGHIf exploited, the command injection vulnerability could allow remote attackers to execute arbitrary commands. This issue affects: QNAP SysteEPSS 1.7%CVE-2025-7883HIGHEluktronics Control Center Powershell Script Command command injectionEPSS 1.7%