Fallos del tipo CWE-78
3847 resultadosCVE-2025-59518HIGHIn LemonLDAP::NG before 2.16.7 and 2.17 through 2.21 before 2.21.3, OS command injection can occur in the Safe jail. It does not Localize _ EPSS 1.2%CVE-2025-63705HIGHNPM package node-ts-ocr 1.0.15 is vulnerable to OS Command Injection via the invokeImageOcr function in src/index.js.EPSS 1.2%CVE-2026-40499HIGHradare2 < 6.1.4 Command Injection via PDB Parser print_gvars()EPSS 1.2%CVE-2026-12814MEDIUMComfast CF-WR631AX V3 API Endpoint mbox-config system os command injectionEPSS 1.2%CVE-2025-34099CRITICALVICIdial vicidial_sales_viewer.php Unauthenticated Command Injection via Basic Auth PasswordEPSS 1.2%CVE-2024-39686CRITICALfishaudio/Bert-VITS2 Command Injection in webui_preprocess.py bert_gen functionEPSS 1.2%CVE-2026-57999HIGHluci-app-tailscale-community - Command Injection via tailscale.do_login RPCEPSS 1.2%CVE-2023-47566MEDIUMQTS, QuTS hero, QuTScloudEPSS 1.2%CVE-2022-48616MEDIUMA Huawei data communication product has a command injection vulnerability. Successful exploitation of this vulnerability may allow attackersEPSS 1.2%CVE-2024-23789CRITICALEnergy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attackeEPSS 1.2%CVE-2024-53256HIGHRizin has a command injection via RzBinInfo bclass due legacy codeEPSS 1.2%CVE-2023-41352HIGHChunghwa Telecom NOKIA G-040W-Q - Command InjectionEPSS 1.2%CVE-2023-52314CRITICALCommand injection in convert_shape_compareEPSS 1.2%CVE-2023-52311CRITICALCommand injection in _wget_downloadEPSS 1.2%CVE-2024-20295HIGHA vulnerability in the CLI of the Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker to perform commaEPSS 1.2%CVE-2023-52310CRITICALCommand injection in get_online_pass_intervalEPSS 1.2%CVE-2025-26856HIGHImproper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in UD-LT2 firmware Ver.1.00.008_SE aEPSS 1.2%CVE-2024-34205HIGHTOTOLINK CP450 v4.1.0cu.747_B20191224 was discovered to contain a command injection vulnerability in the download_firmware function.EPSS 1.2%CVE-2024-3781CRITICALOS Command Injection vulnerability in WBSAirbackEPSS 1.2%CVE-2023-40145HIGHWeintek cMT3000 HMI Web CGI OS Command InjectionEPSS 1.2%