Fallos del tipo CWE-77
2525 resultadosCVE-2026-24299MEDIUMM365 Copilot Information Disclosure VulnerabilityEPSS 0.6%CVE-2021-31357HIGHJunos OS Evolved: shell-injection vulnerabilities in evo_tcpdump UI wrapper scriptEPSS 0.6%CVE-2023-26430LOWAttackers with access to user accounts can inject arbitrary control characters to SIEVE mail-filter rules. This could be abused to access SIEPSS 0.6%CVE-2020-1980HIGHPAN-OS: Shell injection vulnerability in PAN-OS CLI allows execution of shell commandsEPSS 0.6%CVE-2025-25692MEDIUMA PHAR deserialization vulnerability in the _getHeaders function of PrestaShop v8.2.0 allows attackers to execute arbitrary code via a craftEPSS 0.6%CVE-2021-31358HIGHJunos OS Evolved: shell-injection vulnerabilities in evo_sftp UI wrapper scriptEPSS 0.6%CVE-2025-23170MEDIUMThe Versa Director SD-WAN orchestration platform includes functionality to initiate SSH sessions to remote CPEs and the Director shell via SEPSS 0.6%CVE-2024-28041HIGHHGW BL1500HM Ver 002.001.013 and earlier allows a network-adjacent unauthenticated attacker to execute an arbitrary command.EPSS 0.6%CVE-2025-64419CRITICALCoolify vulnerable to command injection via docker-compose.yaml parametersEPSS 0.6%CVE-2026-22864HIGHDeno has an incomplete fix for command-injection prevention on Windows — case-insensitive extension bypassEPSS 0.6%CVE-2026-32183HIGHWindows Snipping Tool Remote Code Execution VulnerabilityEPSS 0.6%CVE-2026-30352CRITICALA remote code execution (RCE) vulnerability in the /devserver/start endpoint of leonvanzyl autocoder commit 79d02a allows attackers to execuEPSS 0.6%CVE-2020-3207MEDIUMCisco IOS XE Software Command Injection VulnerabilityEPSS 0.6%CVE-2024-40445HIGHA directory traversal vulnerability in forkosh Mime TeX before version 1.77 allows attackers on Windows systems to read or append arbitrary EPSS 0.6%CVE-2018-5412—Imperva SecureSphere running v12.0.0.50 is vulnerable to local arbitrary code execution, escaping sealed-mode.EPSS 0.6%CVE-2024-34347HIGH@hoppscotch/cli affected by Sandbox Escape in @hoppscotch/js-sandbox leads to RCEEPSS 0.6%CVE-2025-65946HIGHRoo Code is Vulnerable to Potential Remote Code Execution via zsh Command Validation BugEPSS 0.6%CVE-2024-28729HIGHAn issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M_1.34ME allows a local attacker to execute arbitrary codEPSS 0.6%CVE-2024-48015MEDIUMDell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an Improper Neutralization of Special ElementsEPSS 0.6%CVE-2025-46816CRITICALgoshs route not protected, allows command executionEPSS 0.6%