Fallos del tipo CWE-78
3786 resultadosCVE-2025-11953CRITICALCommand injection in React Native Community CLI allows remote attackers to perform remote code execution by sending HTTP requestsEPSS 61.9%KEVCVE-2025-36604HIGHDell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command InjectionEPSS 61.9%CVE-2020-4428CRITICALIBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated attacker to execute arbitrary commands on the systemEPSS 61.7%KEVCVE-2025-34152CRITICALShenzhen Aitemi M300 Wi-Fi Repeater OS Command Injection via Time ParameterEPSS 61.7%CVE-2020-16205—Using a specially crafted URL command, a remote authenticated user can execute commands as root on the G-Cam and G-Code (Firmware Versions 1EPSS 60.4%CVE-2023-37928HIGHA post-authentication command injection vulnerability in the WSGI server of the Zyxel NAS326 firmware version V5.21(AAZF.14)C0 and NAS542 fiEPSS 60.2%CVE-2021-3577HIGHAn unauthenticated remote code execution vulnerability was reported in some Motorola-branded Binatone Hubble Cameras that could allow an attEPSS 59.9%CVE-2019-5485—NPM package gitlabhook version 0.0.17 is vulnerable to a Command Injection vulnerability. Arbitrary commands can be injected through the repEPSS 59.8%CVE-2025-34030CRITICALsar2html OS Command InjectionEPSS 59.1%CVE-2024-0986MEDIUMIssabel PBX Asterisk-Cli os command injectionEPSS 58.4%CVE-2019-5029CRITICALAn exploitable command injection vulnerability exists in the Config editor of the Exhibitor Web UI versions 1.0.9 to 1.7.1. Arbitrary shell EPSS 57.1%CVE-2021-27104CRITICALAccellion FTA 9_12_370 and earlier is affected by OS command execution via a crafted POST request to various admin endpoints. The fixed versEPSS 56.7%KEVCVE-2025-25256CRITICALAn improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in Fortinet FortiSIEM vEPSS 56.2%CVE-2021-33550HIGHUDP Technology/Geutebrück camera devices: Command injection in date parameter leading to RCEEPSS 55.7%CVE-2021-33554HIGHUDP Technology/Geutebrück camera devices: Command injection in appfile.filename parameter leading to RCEEPSS 55.7%CVE-2021-33548HIGHUDP Technology/Geutebrück camera devices: Command injection in preserve parameter leading to RCEEPSS 55.7%CVE-2021-43857CRITICALGerapy may contain remote code execution vulnerabilityEPSS 55.6%CVE-2024-2448HIGHLoadMaster Command Injection VulnerabilityEPSS 55.4%CVE-2025-58034MEDIUMAn Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78] vulnerability in FortinEPSS 54.4%KEVCVE-2024-9441CRITICALLinear eMerge e3-Series Forgot Password Command InjectionEPSS 53.7%