Fallos del tipo CWE-77
2516 resultadosCVE-2023-33532CRITICALThere is a command injection vulnerability in the Netgear R6250 router with Firmware Version 1.0.4.48. If an attacker gains web management pEPSS 19.4%CVE-2024-25850CRITICALNetis WF2780 v2.1.40144 was discovered to contain a command injection vulnerability via the wps_ap_ssid5g parameterEPSS 19.1%CVE-2024-53945HIGHThe KuWFi 4G AC900 LTE router 1.0.13 is vulnerable to command injection on the HTTP API endpoints /goform/formMultiApnSetting and /goform/atEPSS 19.0%CVE-2024-35397HIGHTOTOLINK CP900L v4.1.5cu.798_B20221228 weas discovered to contain a command injection vulnerability in the NTPSyncWithHost function via the EPSS 19.0%CVE-2024-7922MEDIUMD-Link DNS-1550-04 myMusic.cgi cgi_write_playlist command injectionEPSS 18.9%CVE-2023-49237CRITICALAn issue was discovered on TRENDnet TV-IP1314PI 5.5.3 200714 devices. Command injection can occur because the system function is used by davEPSS 18.6%CVE-2025-9424MEDIUMRuijie WS7204-A branch_import.php os command injectionEPSS 18.3%CVE-2026-2537MEDIUMComfast CF-E4 HTTP POST Request mbox-config command injectionEPSS 18.2%CVE-2026-3517HIGHOS Command Injection Remote Code Execution Vulnerability in Progress LoadMaster, ECS Connection Manager, Object Scale Connection Manager & MOVEit WAFEPSS 18.2%CVE-2025-8956MEDIUMD-Link DIR‑818L ssdpcgi cgibin getenv command injectionEPSS 18.1%CVE-2025-14094MEDIUMEdimax BR-6478AC V3 formSysCmd sub_44CCE4 os command injectionEPSS 17.9%CVE-2024-13129HIGHRoxy-WI roxy.py action_service os command injectionEPSS 17.8%CVE-2010-4345HIGHExim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate confiEPSS 17.8%KEVCVE-2023-4414MEDIUMByzoro Smart S85F Management Platform decodmail.php command injectionEPSS 17.8%CVE-2025-13442MEDIUMUTT 进取 750W formPdbUpConfig system command injectionEPSS 17.6%CVE-2025-11331MEDIUMIdeaCMS Website Name Config.php command injectionEPSS 17.6%CVE-2025-44084CRITICALD-link DI-8100 16.07.26A1 is vulnerable to Command Injection. An attacker can exploit this vulnerability by crafting specific HTTP requests,EPSS 17.6%CVE-2024-34218LOWTOTOLINK outdoor CPE CP450 v4.1.0cu.747_B20191224 was discovered to contain a command injection vulnerability in the NTPSyncWithHost functioEPSS 17.6%CVE-2026-5854CRITICALTotolink A7100RU CGI cstecgi.cgi setWiFiEasyCfg os command injectionEPSS 17.5%CVE-2024-53333MEDIUMTOTOLINK EX200 v4.0.3c.7646_B20201211 was found to contain a command insertion vulnerability in the setUssd function. This vulnerability allEPSS 17.5%