Fallos del tipo CWE-78
3797 resultadosCVE-2026-5854CRITICALTotolink A7100RU CGI cstecgi.cgi setWiFiEasyCfg os command injectionEPSS 17.5%CVE-2024-58274HIGHHikvision CSMP (Comprehensive Security Management Platform) iSecure Center through 2024-08-01 allows execution of a command within $( ) in /EPSS 17.5%CVE-2023-29804HIGHWFS-SR03 v1.0.3 was discovered to contain a command injection vulnerability via the sys_smb_pwdmod function.EPSS 17.5%CVE-2025-14093MEDIUMEdimax BR-6478AC V3 formTracerouteDiagnosticRun sub_416990 os command injectionEPSS 17.3%CVE-2020-7361CRITICALZenTao Pro Command InjectionEPSS 17.2%CVE-2022-40624CRITICALpfSense pfBlockerNG through 2.1.4_27 allows remote attackers to execute arbitrary OS commands as root via the HTTP Host header, a different EPSS 17.1%CVE-2025-54987CRITICALA vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authenticated remote attacker to upload malicious EPSS 16.9%CVE-2024-48634HIGHD-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command injection vulnerability via the key parameter in tEPSS 16.7%CVE-2019-25224CRITICALWP Database Backup < 5.2 - Unauthenticated OS Command InjectionEPSS 16.7%CVE-2025-3002MEDIUMDigital China DCME-520 mon_merge_stat_hist.php os command injectionEPSS 16.4%CVE-2024-9004MEDIUMD-Link DAR-7000 Backup_Server_commit.php os command injectionEPSS 16.2%CVE-2023-47415HIGHCypress Solutions CTM-200 v2.7.1.5600 and below was discovered to contain an OS command injection vulnerability via the cli_text parameter.EPSS 16.0%CVE-2018-15442HIGHCisco Webex Meetings Desktop App Update Service Command Injection VulnerabilityEPSS 16.0%CVE-2026-5850CRITICALTotolink A7100RU CGI cstecgi.cgi setVpnPassCfg os command injectionEPSS 16.0%CVE-2022-31898MEDIUMgl-inet GL-MT300N-V2 Mango v3.212 and GL-AX1800 Flint v3.214 were discovered to contain multiple command injection vulnerabilities via the pEPSS 15.9%CVE-2025-9752MEDIUMD-Link DIR-852 SOAP Service soap.cgi soapcgi_main os command injectionEPSS 15.8%CVE-2025-53949HIGHAn Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78] vulnerability in FortinEPSS 15.5%CVE-2026-36356CRITICALThe GoAhead web server on MeiG Smart FORGE_SLT711 devices (firmware MDM9607.LE.1.0-00110-STD.PROD-1) allows unauthenticated OS command injecEPSS 15.4%CVE-2026-2670HIGHAdvantech WISE-6610 Background Management openvpn_apply os command injectionEPSS 15.3%CVE-2025-50121CRITICALA CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
vulnerability exists that could cause uEPSS 15.3%