Weaknesses of type CWE-78

3,878 results
CVE-2025-64109HIGHCursor CLI Beta: Command Injection via Untrusted MCP ConfigurationEPSS 0.5%CVE-2022-1513HIGHA potential vulnerability was reported in Lenovo PCManager prior to version 5.0.10.4191 that may allow code execution when visiting a speciaEPSS 0.5%CVE-2026-34982HIGHVim modeline bypass via various options affects Vim < 9.2.0276EPSS 0.5%CVE-2026-55427HIGHCoder vulnerable to SSH config injection via unsanitized server-supplied values in `coder config-ssh`EPSS 0.5%CVE-2026-48787HIGHgin-vue-admin vulnerable to RCEEPSS 0.5%CVE-2026-20266CRITICALOS Command Injection in the btool Configuration Helper in Splunk AI ToolkitEPSS 0.5%CVE-2023-28617HIGHorg-babel-execute:latex in ob-latex.el in Org Mode through 9.6.1 for GNU Emacs allows attackers to execute arbitrary commands via a file namEPSS 0.5%CVE-2026-44723MEDIUMVowpal Wabbit: Shell injection via crafted PR title in python_checks.yml allows arbitrary command execution on CI runnerEPSS 0.5%CVE-2024-20469MEDIUMCisco Identity Services Engine Command Injection VulnerabilityEPSS 0.5%CVE-2023-43069HIGH Dell SmartFabric Storage Software v1.4 (and earlier) contain(s) an OS Command Injection Vulnerability in the CLI. An authenticated local atEPSS 0.5%CVE-2025-20161MEDIUMCisco NX-OS Software Command Injection VulnerabilityEPSS 0.5%CVE-2026-25044HIGHBudibase: Command Injection in Bash Automation StepEPSS 0.5%CVE-2026-35906CRITICALAn undocumented debug CGI endpoint in T3 Technology CPE models T625Pro v1.0.07, T6825G v1.0.03 allows unauthenticated attackers to execute aEPSS 0.5%CVE-2024-40895MEDIUMFFRI AMC versions 3.4.0 to 3.5.3 and some OEM products that implement/bundle FFRI AMC versions 3.4.0 to 3.5.3 allow a remote unauthenticatedEPSS 0.5%CVE-2023-20023MEDIUMCisco Identity Services Engine Privilege Escalation VulnerabilitiesEPSS 0.5%CVE-2025-52988HIGHJunos OS and Junos OS Evolved: Privilege escalation to root via CLI command 'request system logout'EPSS 0.5%CVE-2023-20022MEDIUMCisco Identity Services Engine Privilege Escalation VulnerabilitiesEPSS 0.5%CVE-2023-20021MEDIUMCisco Identity Services Engine Privilege Escalation VulnerabilitiesEPSS 0.5%CVE-2026-10796HIGHnvm executes commands from a malicious Node.js mirror's version stringsEPSS 0.5%CVE-2025-36606HIGHDell Unity, version(s) 5.5 and prior, contain(s) an OS Command Injection Vulnerability in its svc_nfssupport utility. An authenticated attacEPSS 0.5%