Fallos del tipo CWE-78
3842 resultadosCVE-2026-48687HIGHFastNetMon Community Edition through 1.2.9 contains an OS command injection vulnerability in the Juniper router integration plugin. The _logEPSS 1.6%CVE-2023-6078HIGHOS Command Injection vulnerability affecting BIOVIA Materials Studio products from Release BIOVIA 2021 through Release BIOVIA 2023EPSS 1.6%CVE-2023-52026CRITICALTOTOlink EX1800T V9.1.0cu.2112_B20220316 was discovered to contain a remote command execution (RCE) vulnerability via the telnet_enabled parEPSS 1.6%CVE-2026-23520CRITICALArcane has a Command Injection in Arcane Updater Lifecycle Labels Enables RCEEPSS 1.6%CVE-2018-15722—The Logitech Harmony Hub before version 4.15.206 is vulnerable to OS command injection via the time update request. A remote server or man iEPSS 1.6%CVE-2024-24327CRITICALTOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the pppoePass parameter in the setIpEPSS 1.6%CVE-2024-50853HIGHTenda G3 v3.0 v15.11.0.20 was discovered to contain a command injection vulnerability via the formSetDebugCfg function.EPSS 1.6%CVE-2024-50852HIGHTenda G3 v3.0 v15.11.0.20 was discovered to contain a command injection vulnerability via the formSetUSBPartitionUmount function.EPSS 1.6%CVE-2024-24326CRITICALTOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the arpEnable parameter in the setStEPSS 1.6%CVE-2024-22942CRITICALTOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the hostName parameter in the setWanEPSS 1.6%CVE-2024-23057HIGHTOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the tz parameter in the setNtpCfg fuEPSS 1.6%CVE-2025-60965CRITICALOS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers tEPSS 1.6%CVE-2025-60964CRITICALOS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W 6010-0071-000 Ver 4.00 allows attackers tEPSS 1.6%CVE-2023-22598HIGH
InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-S-V2.3.0.r5542, contain vulnerEPSS 1.6%CVE-2021-35047CRITICALPrivileged Command Injection Vulnerability in Fidelis Network and DeceptionEPSS 1.6%CVE-2026-10727HIGHAn OS command injection vulnerability in Ivanti EPMM before 12.9.0.1, 12.8.0.3 and 12.7.0.2 versions allows a remote authenticated attacker EPSS 1.6%CVE-2026-42062CRITICALELECOM wireless LAN access point devices contain an OS command injection in processing of username parameter. If processing a crafted requesEPSS 1.6%CVE-2018-18600HIGHThe remote upgrade feature in Guardzilla GZ180 devices allow command injection via a crafted new firmware version parameter.EPSS 1.6%CVE-2024-8807CRITICALCohesive Networks VNS3 Command Injection Remote Code Execution VulnerabilityEPSS 1.6%CVE-2026-7416MEDIUMPolarVista xcode-mcp-server MCP index.ts run_tests os command injectionEPSS 1.6%