Fallos del tipo CWE-78
3806 resultadosCVE-2023-34356HIGHAn OS command injection vulnerability exists in the data.cgi xfer_dns functionality of peplink Surf SOHO HW1 v6.3.5 (in QEMU). A specially cEPSS 5.5%CVE-2022-27005HIGHTotolink routers s X5000R V9.1.0u.6118_B20201102 and A7000R V9.1.0u.6115_B20201022 were discovered to contain a command injection vulnerabilEPSS 5.5%CVE-2020-10886HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1EPSS 5.5%CVE-2017-15103—A security-check flaw was found in the way the Heketi 5 server API handled user requests. An authenticated Heketi user could send specially EPSS 5.5%CVE-2020-5760—Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to an OS command injection vulnerability. Unauthenticated remote EPSS 5.5%CVE-2026-8188MEDIUMWavlink NU516U1 adm.cgi change_wifi_password os command injectionEPSS 5.5%CVE-2025-54382CRITICALCherry Studio RCE Vulnerability DisclosureEPSS 5.4%CVE-2021-20991CRITICALFibaro Home Center Authenticated remote command executionEPSS 5.4%CVE-2025-7788MEDIUMXuxueli xxl-job SampleXxlJob.java commandJobHandler os command injectionEPSS 5.4%CVE-2019-5138CRITICALAn exploitable command injection vulnerability exists in encrypted diagnostic script functionality of the Moxa AWK-3131A firmware version 1.EPSS 5.4%CVE-2023-37477HIGHCommand injection in firewall ip functionality in 1PanelEPSS 5.4%CVE-2022-45005CRITICALIP-COM EW9 V15.11.0.14(9732) was discovered to contain a command injection vulnerability in the cmd_get_ping_output function.EPSS 5.4%CVE-2026-8190MEDIUMWavlink NU516U1 adm.cgi wan os command injectionEPSS 5.3%CVE-2026-8191MEDIUMWavlink NU516U1 adm.cgi wifi_region os command injectionEPSS 5.3%CVE-2022-30603CRITICALAn OS command injection vulnerability exists in the web interface /action/iperf functionality of Abode Systems, Inc. iota All-In-One SecuritEPSS 5.3%CVE-2025-25038CRITICALMiniDVBLinux Root Command InjectionEPSS 5.3%CVE-2025-22604CRITICALCacti has Authenticated RCE via multi-line SNMP responsesEPSS 5.3%CVE-2025-34082CRITICALIGEL OS Secure Terminal and Secure Shadow Remote Code ExecutionEPSS 5.3%CVE-2021-21884CRITICALAn OS command injection vulnerability exists in the Web Manager SslGenerateCSR functionality of Lantronix PremierWave 2050 8.9.0.0R4. A specEPSS 5.3%CVE-2025-15499HIGHSangfor Operation and Maintenance Management System VersionController.java uploadCN os command injectionEPSS 5.3%