Falhas do tipo CWE-77
2.516 resultadosCVE-2026-2534MEDIUMComfast CF-N1 V2 mbox-config sub_44AC4C command injectionEPSS 12.0%CVE-2025-15139MEDIUMTRENDnet TEW-822DRE formWsc sub_43ACF4 command injectionEPSS 11.8%CVE-2024-55544HIGHAuthenticated Command InjectionEPSS 11.7%CVE-2024-39360CRITICALAn os command injection vulnerability exists in the nas.cgi remove_dir() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially craEPSS 11.7%CVE-2025-4357MEDIUMTenda RX3 telnet command injectionEPSS 11.7%CVE-2026-20841HIGHWindows Notepad App Remote Code Execution VulnerabilityEPSS 11.7%CVE-2018-14649CRITICALIt was found that ceph-isci-cli package as shipped by Red Hat Ceph Storage 2 and 3 is using python-werkzeug in debug shell mode. This is donEPSS 11.6%CVE-2025-1829MEDIUMTOTOLINK X18 cstecgi.cgi setMtknatCfg os command injectionEPSS 11.4%CVE-2024-37642CRITICALTRENDnet TEW-814DAP v1_(FW1.01B01) was discovered to contain a command injection vulnerability via the ipv4_ping, ipv6_ping parameter at /foEPSS 11.4%CVE-2025-15048MEDIUMTenda WH450 HTTP Request CheckTools command injectionEPSS 11.3%CVE-2025-4999MEDIUMLinksys FGW3000-AH/FGW3000-HK HTTP POST Request sysconf.cgi sub_4153FC command injectionEPSS 11.3%CVE-2020-8298—fs-path node module before 0.0.25 is vulnerable to command injection by way of user-supplied inputs via the `copy`, `copySync`, `remove`, anEPSS 11.2%CVE-2026-3662MEDIUMWavlink WL-NU516U1 adm.cgi usb_p910 command injectionEPSS 11.2%CVE-2023-22884CRITICALApache Airflow, Apache Airflow MySQL Provider: Arbitrary file read via MySQL provider in Apache AirflowEPSS 11.1%CVE-2025-2094MEDIUMTOTOLINK EX1800T cstecgi.cgi setWiFiExtenderConfig os command injectionEPSS 11.0%CVE-2026-20147CRITICALCisco Identity Services Engine Remote Code Execution VulnerabilityEPSS 10.9%CVE-2026-3661MEDIUMWavlink WL-NU516U1 adm.cgi ota_new_upgrade command injectionEPSS 10.9%CVE-2025-14107HIGHZSPACE Q2C NAS HTTP POST Request status zfilev2_api.SafeStatus command injectionEPSS 10.8%CVE-2025-66399HIGHSNMP Command Injection leads to RCE in CactiEPSS 10.8%CVE-2025-14106HIGHZSPACE Q2C NAS HTTP POST Request close zfilev2_api.CloseSafe command injectionEPSS 10.7%