Fallos del tipo CWE-77
2524 resultadosCVE-2026-5994CRITICALTotolink A7100RU CGI cstecgi.cgi setTelnetCfg os command injectionEPSS 1.8%CVE-2026-9533MEDIUMTotolink CA750-PoE Setting cstecgi.cgi recvUpgradeNewFw os command injectionEPSS 1.8%CVE-2023-1877MEDIUMCommand Injection in microweber/microweberEPSS 1.8%CVE-2023-24148CRITICALTOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the FileName parameter in the setUploadUserDataEPSS 1.8%CVE-2023-24145CRITICALTOTOLINK CA300-PoE V6.2c.884 was discovered to contain a command injection vulnerability via the plugin_version parameter in the setUnloadUsEPSS 1.8%CVE-2025-67511CRITICALCybersecurity AI (CAI) vulnerable to Command Injection in run_ssh_command_with_credentials Agent toolEPSS 1.8%CVE-2024-12985MEDIUMOvertek OT-E801G passwd os command injectionEPSS 1.8%CVE-2025-45986CRITICALBlink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL-F1200_AT1 v1.0.0, BL-X26_AC8 v1.2.8, BLAC450EPSS 1.8%CVE-2025-45984CRITICALBlink routers BL-WR9000 V2.4.9, BL-AC1900 V1.0.2, BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 V1.0.5, BL-LTE300 V1.2.3, BL-F1200_AT1 V1.0.0, BL-X26_AC8EPSS 1.8%CVE-2026-7823CRITICALTotolink A8000RU cstecgi.cgi setAppFilterCfg os command injectionEPSS 1.8%CVE-2026-35682HIGHAnviz CX2 Lite Command InjectionEPSS 1.8%CVE-2025-1819MEDIUMTenda AC7 1200M telnet TendaTelnet os command injectionEPSS 1.8%CVE-2026-7154CRITICALTotolink A8000RU CGI cstecgi.cgi setAdvancedInfoShow os command injectionEPSS 1.8%CVE-2026-7037CRITICALTotolink A8000RU CGI cstecgi.cgi setVpnPassCfg os command injectionEPSS 1.8%CVE-2026-7156CRITICALTotolink A8000RU CGI cstecgi.cgi CsteSystem os command injectionEPSS 1.8%CVE-2023-27849CRITICALrails-routes-to-json v1.0.0 was discovered to contain a remote code execution (RCE) vulnerability via the child_process function.EPSS 1.8%CVE-2025-25743HIGHD-Link DIR-853 A1 FW1.20B07 was discovered to contain a command injection vulnerability in the SetVirtualServerSettings module.EPSS 1.8%CVE-2023-31729CRITICALTOTOLINK A3300R v17.0.0cu.557 is vulnerable to Command Injection via /cgi-bin/cstecgi.cgi.EPSS 1.8%CVE-2023-25643HIGHTwo Vulnerabilities in Some ZTE Mobile Internet ProductsEPSS 1.8%CVE-2026-7152CRITICALTotolink A8000RU CGI cstecgi.cgi setTelnetCfg os command injectionEPSS 1.8%