Weaknesses of type CWE-77
2,524 resultsCVE-2023-23149CRITICALDEK-1705 <=Firmware:34.23.1 device was discovered to have a command execution vulnerability.EPSS 0.9%CVE-2024-41136MEDIUMAuthenticated Command Injection in HPE Aruba Networking EdgeConnect SD-WAN Command Line InterfaceEPSS 0.9%CVE-2023-5878CRITICALOneWireless command injection possible when updating firmwareEPSS 0.9%CVE-2025-29209CRITICALTOTOLINK X18 v9.1.0cu.2024_B20220329 has an unauthorized arbitrary command execution in the enable parameter' of the sub_41105C function of EPSS 0.9%CVE-2023-26125MEDIUMVersions of the package github.com/gin-gonic/gin before 1.9.0 are vulnerable to Improper Input Validation by allowing an attacker to use a sEPSS 0.9%CVE-2023-28430HIGHOneSignal repository github action command injectionEPSS 0.9%CVE-2025-44863MEDIUMTOTOLINK CA300-POE V6.2c.884_B20180522 was found to contain a command injection vulnerability in the msg_process function via the Url parameEPSS 0.9%CVE-2025-44845MEDIUMTOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the NTPSyncWithHost function via the hostTEPSS 0.9%CVE-2025-44839MEDIUMTOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function EPSS 0.9%CVE-2025-44841MEDIUMTOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function EPSS 0.9%CVE-2025-44844MEDIUMTOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the setUpgradeFW function via the FileNameEPSS 0.9%CVE-2025-44860MEDIUMTOTOLINK CA300-POE V6.2c.884_B20180522 was found to contain a command injection vulnerability in the msg_process function via the Port paramEPSS 0.9%CVE-2025-44842MEDIUMTOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the msg_process function via the Port paraEPSS 0.9%CVE-2025-44840MEDIUMTOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function EPSS 0.9%CVE-2025-44848MEDIUMTOTOLINK CA600-PoE V5.3c.6665_B20180820 was found to contain a command injection vulnerability in the msg_process function via the Url paramEPSS 0.9%CVE-2024-39567HIGHA vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 HF1). The system service of affected applications iEPSS 0.9%CVE-2024-39568HIGHA vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 HF1). The system service of affected applications iEPSS 0.9%CVE-2026-31059CRITICALA remote command execution (RCE) vulnerability in the /goform/formDia component of UTT Aggressive HiPER 520W v3v1.7.7-180627 allows attackerEPSS 0.9%CVE-2025-54424HIGH1Panel Agent Bypasses Certificate Verification Leading to Arbitrary Command ExecutionEPSS 0.9%CVE-2023-29475CRITICALinventory in Atos Unify OpenScape 4000 Platform and OpenScape 4000 Manager Platform 10 R1 before 10 R1.34.4 allows an unauthenticated attackEPSS 0.9%