Weaknesses of type CWE-78
3,848 resultsCVE-2025-29041CRITICALAn issue in dlink DIR 823x 240802 allows a remote attacker to execute arbitrary code via the target_addr key value and the function 0x41710cEPSS 1.1%CVE-2023-33869MEDIUMEnphase Envoy OS Command InjectionEPSS 1.1%CVE-2026-7600MEDIUMArtMin96 yii2-mcp-server MCP index.ts yii_execute_command os command injectionEPSS 1.1%CVE-2026-6141MEDIUMdanielmiessler Personal_AI_Infrastructure parse_url.ts os command injectionEPSS 1.1%CVE-2026-5831MEDIUMAgions taskflow-ai terminal_execute handlers.ts os command injectionEPSS 1.1%CVE-2023-44403HIGHD-Link DAP-1325 HNAP SetWLanRadioSettings Channel Command Injection Remote Code Execution VulnerabilityEPSS 1.1%CVE-2023-47567MEDIUMQTS, QuTS hero, QuTScloudEPSS 1.1%CVE-2024-23690HIGHEOL Netgear FVS336v3 Telnet Configuration Backup Command InjectionEPSS 1.1%CVE-2022-25926HIGHVersions of the package window-control before 1.4.5 are vulnerable to Command Injection via the sendKeys function, due to improper input sanEPSS 1.1%CVE-2023-33839HIGHIBM Security Verify Governance command executionEPSS 1.1%CVE-2021-26726HIGHRemote code execution in Valmet DNA before Collection 2021EPSS 1.1%CVE-2022-35975CRITICALImproper object validation allows for arbitrary code execution in GitOps Tools Extension for VSCodeEPSS 1.1%CVE-2026-3227HIGHAuthenticated Command Injection on TP-Link TL-WR802N, TL-WR841N and TL-WR840NEPSS 1.1%CVE-2023-37213HIGH Synel SYnergy Fingerprint Terminals - CWE-78: 'OS Command Injection'EPSS 1.1%CVE-2024-0166HIGH
Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svc_tcpdump utility. An authenticated attacker couEPSS 1.1%CVE-2024-36394CRITICALSysAid - CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')EPSS 1.1%CVE-2024-4301HIGHN-Reporter and N-Cloud from N-Partner - Os Command InjectionEPSS 1.1%CVE-2024-8278HIGHA privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perfEPSS 1.1%CVE-2024-8279HIGHA privilege escalation vulnerability was discovered in XCC that could allow a valid, authenticated XCC user with elevated privileges to perfEPSS 1.1%CVE-2026-12104HIGHAuthenticated OS Command Injection in BondixEPSS 1.1%