Fallos del tipo CWE-78

3878 resultados
CVE-2024-22228HIGH Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svc_cifssupport utility. An authenticated attackerEPSS 0.6%CVE-2023-49691HIGHA vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.0), RUGGEDCOM RM1224 LTE(4G) NAM EPSS 0.6%CVE-2024-22227HIGH Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability in its svc_dc utility. An authenticated attacker could poEPSS 0.6%CVE-2024-34013HIGHLocal privilege escalation due to OS command injection vulnerability. The following products are affected: Acronis True Image (macOS) beforeEPSS 0.6%CVE-2025-6541HIGHOS command injection using information obtained from the web management interfaceEPSS 0.6%CVE-2026-20099MEDIUMCisco UCS Manager and FXOS Software Command Injection VulnerabilityEPSS 0.6%CVE-2024-28767MEDIUMIBM Security Directory Integrator command executionEPSS 0.6%CVE-2022-48684HIGHAn issue was discovered in Logpoint before 7.1.1. Template injection was seen in the search template. The search template uses jinja templatEPSS 0.6%CVE-2026-25593HIGHOpenClaw Affected by Unauthenticated Local RCE via WebSocket config.applyEPSS 0.6%CVE-2026-47294HIGHMicrosoft SharePoint Server Remote Code Execution VulnerabilityEPSS 0.6%CVE-2023-34213HIGHSecond Order Command-injection Vulnerability in the Key-generation FunctionEPSS 0.6%CVE-2025-4230HIGHPAN-OS: Authenticated Admin Command Injection Vulnerability Through CLIEPSS 0.6%CVE-2026-22176MEDIUMOpenClaw < 2026.2.19 - Command Injection via Unescaped Environment Variables in Windows Scheduled Task Script GenerationEPSS 0.6%CVE-2024-52058HIGHPotential arbitrary command execution in System Designer while parsing malicious HTTP/REST requestsEPSS 0.6%CVE-2022-45939HIGHGNU Emacs through 28.2 allows attackers to execute commands via shell metacharacters in the name of a source-code file, because lib-src/etagEPSS 0.6%CVE-2025-54415CRITICALdag-factory's CI/CD Workflow Allows for Repository Takeover and Secret ExfiltrationEPSS 0.6%CVE-2026-22179HIGHOpenClaw < 2026.2.22 - Allowlist Bypass via Command Substitution in system.runEPSS 0.6%CVE-2015-10145HIGHGargoyle 1.5.x Authenticated OS Command Execution via run_commands.shEPSS 0.6%CVE-2023-47540MEDIUMAn improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiSandbox 4.4.0 tEPSS 0.6%CVE-2023-34141HIGHA command injection vulnerability in the access point (AP) management feature of the Zyxel ATP series firmware versions 5.00 through 5.36 PaEPSS 0.6%