Weaknesses of type CWE-78

3,870 results
CVE-2024-42029MEDIUMxdg-desktop-portal-hyprland (aka an XDG Desktop Portal backend for Hyprland) before 1.3.3 allows OS command execution, e.g., because single EPSS 0.8%CVE-2021-33633HIGHCommand Injection in aops-ceresEPSS 0.8%CVE-2022-43466MEDIUMOS command injection vulnerability in Buffalo network devices allows a network-adjacent attacker with an administrative privilege to executeEPSS 0.8%CVE-2021-21570MEDIUMDell NetWorker, versions 18.x and 19.x contain an Information disclosure vulnerability. A NetWorker server user with remote access to NetWorEPSS 0.8%CVE-2026-23592HIGHInsecure File Handling allows Remote Code Execution in Backup FunctionalityEPSS 0.8%CVE-2024-51248HIGHIn Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the moEPSS 0.8%CVE-2024-51247HIGHIn Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doEPSS 0.8%CVE-2024-51244HIGHIn Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doEPSS 0.8%CVE-2026-34977CRITICALAperi'Solve Affected by Unauthenticated RCE via JPSeek Analyzer CommandEPSS 0.8%CVE-2026-42307MEDIUMVim: OS Command Injection in netrwEPSS 0.8%CVE-2025-67172HIGHRiteCMS v3.1.0 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the parse_special_tags() function.EPSS 0.8%CVE-2024-46329HIGHVONETS VAP11G-300 v3.3.23.6.9 was discovered to contain a command injection vulnerability via the SystemCommand object.EPSS 0.8%CVE-2026-26191MEDIUMFleet vulnerable to OS command injection in software packagesEPSS 0.8%CVE-2024-54008HIGHAuthenticated Remote Code Execution (RCE) in HPE Aruba Networking AirWave Management PlatformEPSS 0.8%CVE-2026-0980HIGHRubyipmi: red hat satellite: remote code execution in rubyipmi via malicious bmc usernameEPSS 0.8%CVE-2026-5416HIGHCommand Injection via name parameterEPSS 0.8%CVE-2024-49803CRITICALIBM Security Verify Access Appliance command executionEPSS 0.8%CVE-2024-11858HIGHRadare2: command injection via pebble application files in radare2EPSS 0.8%CVE-2024-45798CRITICALMultiple Poisoned Pipeline Execution (PPE) vulnerabilitiesEPSS 0.8%CVE-2026-46394HIGHHAX CMS Vulnerable to Command Injection using Git.phpEPSS 0.8%