Weaknesses of type CWE-78
3,848 resultsCVE-2025-14204MEDIUMTykoDev cherry-studio-TykoFork OAuth Server Discovery oauth-authorization-server redirectToAuthorization os command injectionEPSS 1.2%CVE-2025-20055CRITICALOS command injection vulnerability exists in network storage servers STEALTHONE D220/D340 provided by Y'S corporation. An attacker who can aEPSS 1.1%CVE-2026-26318HIGHsysteminformation has Command Injection via Unsanitized `locate` Output in `versions()`EPSS 1.1%CVE-2022-24390HIGHAuthenticated Command Injection Vulnerability in Fidelis Network and DeceptionEPSS 1.1%CVE-2025-58116HIGHImproper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in WN-7D36QR and WN-7D36QR/UE. If thEPSS 1.1%CVE-2025-64444HIGHImproper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in NCP-HG100 1.4.48.16 and earlier. EPSS 1.1%CVE-2024-53286HIGHImproper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in DDNS Record functionality in SynEPSS 1.1%CVE-2025-57516HIGHOS Command injection vulnerability in PublicCMS PublicCMS-V5.202506.a, and PublicCMS-V5.202506.b allowing attackers to execute arbitrary comEPSS 1.1%CVE-2022-40176—A vulnerability has been identified in Desigo PXM30-1 (All versions < V02.20.126.11-41), Desigo PXM30.E (All versions < V02.20.126.11-41), DEPSS 1.1%CVE-2022-21143HIGHAirspan Networks Mimosa OS Command InjectionEPSS 1.1%CVE-2025-10265HIGHDigiever|NVR - OS Command InjectionEPSS 1.1%CVE-2022-43654HIGHNETGEAR CAX30S SSO Command Injection Remote Code Execution VulnerabilityEPSS 1.1%CVE-2023-6795MEDIUMPAN-OS: OS Command Injection Vulnerability in the Web InterfaceEPSS 1.1%CVE-2024-6507HIGHDeep Lake Kaggle command injectionEPSS 1.1%CVE-2024-34073HIGHCommand Injection in sagemaker-python-sdkEPSS 1.1%CVE-2020-5282HIGHarbitrary shell execution in Nick Chan BotEPSS 1.1%CVE-2023-23373HIGHQUSBCam2EPSS 1.1%CVE-2026-44590CRITICALSherlock: Command Injection via pull_request_target in validate_modified_targets.ymlEPSS 1.1%CVE-2026-5678MEDIUMTotolink A7100RU cstecgi.cgi setScheduleCfg os command injectionEPSS 1.1%CVE-2026-5677MEDIUMTotolink A7100RU cstecgi.cgi CsteSystem os command injectionEPSS 1.1%