Falhas do tipo CWE-77
2.523 resultadosCVE-2026-2686CRITICALSECCN Dingcheng G10 session_login.cgi qq os command injectionEPSS 2.3%CVE-2025-60702MEDIUMA command injection vulnerability exists in the TOTOLINK A950RG Router firmware V5.9c.4592_B20191022_ALL within the `system.so` binary. The EPSS 2.3%CVE-2021-4329MEDIUMjson-logic-js logic.js command injectionEPSS 2.3%CVE-2026-26793CRITICALGL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the set_config function. This vulnerability alloEPSS 2.3%CVE-2025-45987CRITICALBlink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL-F1200_AT1 v1.0.0, BL-X26_AC8 v1.2.8, BLAC450EPSS 2.3%CVE-2021-32529CRITICALQSAN XEVO, SANOS - Command Injection -1EPSS 2.3%CVE-2021-1443MEDIUMCisco IOS XE Software Web UI OS Command Injection VulnerabilityEPSS 2.3%CVE-2025-43843HIGHGHSL-2025-013_Retrieval-based-Voice-Conversion-WebUIEPSS 2.3%CVE-2023-36805HIGHWindows MSHTML Platform Security Feature Bypass VulnerabilityEPSS 2.3%CVE-2024-7896MEDIUMTosei Online Store Management System ネット店舗管理システム p1_ftpserver.php command injectionEPSS 2.3%CVE-2024-41320HIGHTOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability via the ifname parameter in the get_apcli_EPSS 2.2%CVE-2023-36414HIGHAzure Identity SDK Remote Code Execution VulnerabilityEPSS 2.2%CVE-2026-5974MEDIUMFoundationAgents MetaGPT terminal.py Bash.run os command injectionEPSS 2.2%CVE-2026-5020MEDIUMTotolink A3600R Parameter cstecgi.cgi setNoticeCfg command injectionEPSS 2.2%CVE-2022-40619HIGHFunJSQ, a third-party module integrated on some NETGEAR routers and Orbi WiFi Systems, exposes an HTTP server over the LAN interface of affeEPSS 2.2%CVE-2024-51442HIGHCommand Injection in Minidlna version v1.3.3 and before allows an attacker to execute arbitrary OS commands via a specially crafted minidlnaEPSS 2.2%CVE-2026-41304HIGHWWBN AVideo vulnerable to RCE caused by clonesite pluginEPSS 2.2%CVE-2024-28354CRITICALThere is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmware version 2.10B01. An attacker can inject commands EPSS 2.2%CVE-2023-31529HIGHMotorola CX2L Router 1.0.1 was discovered to contain a command injection vulnerability via the system_time_timezone parameter.EPSS 2.2%CVE-2023-31528HIGHMotorola CX2L Router 1.0.1 was discovered to contain a command injection vulnerability via the staticroute_list parameter.EPSS 2.2%