Falhas do tipo CWE-78

3.866 resultados
CVE-2024-52021HIGHNetgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the wan_gateway parameter at bsw_fix.cgi. This vulneEPSS 1.0%CVE-2023-22280HIGHMAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancEPSS 1.0%CVE-2026-5208HIGHImproper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in coolercontroldEPSS 1.0%CVE-2025-8637MEDIUMKenwood DMX958XR Firmware Update Command Injection VulnerabilityEPSS 1.0%CVE-2025-54795HIGHClaude Code echo command allowed bypass of user approval prompt for command executionEPSS 1.0%CVE-2024-3104CRITICALRemote Code Execution in mintplex-labs/anything-llmEPSS 1.0%CVE-2025-14737HIGHCommand Injection Vulnerability in TP-Link WA850REEPSS 1.0%CVE-2023-41283MEDIUMQTS, QuTS hero, QuTScloudEPSS 1.0%CVE-2023-41282MEDIUMQTS, QuTS hero, QuTScloudEPSS 1.0%CVE-2023-44304HIGH Dell DM5500 contains a privilege escalation vulnerability in the appliance. A remote attacker with low privileges could potentially exploEPSS 1.0%CVE-2023-41281MEDIUMQTS, QuTS hero, QuTScloudEPSS 1.0%CVE-2022-40720HIGHThis vulnerability allows network-adjacent attackers to execute arbitrary commands on affected installations of D-Link DIR-2150 4.0.1 routerEPSS 1.0%CVE-2026-48165HIGHMariaDB: unsafe usage of `wsrep_sst_receive_address` values on the joiner sideEPSS 1.0%CVE-2020-7804MEDIUMActiveX Control(HShell.dll) in Handy Groupware 1.7.3.1 for Windows 7, 8, and 10 allows an attacker to execute arbitrary command via the ShelEPSS 1.0%CVE-2023-47563HIGHVideo StationEPSS 1.0%CVE-2025-8630MEDIUMKenwood DMX958XR Firmware Update Command Injection VulnerabilityEPSS 1.0%CVE-2025-8629MEDIUMKenwood DMX958XR Firmware Update Command Injection VulnerabilityEPSS 1.0%CVE-2024-31976HIGHEnGenius EWS356-FIR 1.1.30 and earlier devices allow a remote attacker to execute arbitrary OS commands via the Controller connectivity paraEPSS 1.0%CVE-2025-8628MEDIUMKenwood DMX958XR Firmware Update Command Injection VulnerabilityEPSS 1.0%CVE-2025-8631MEDIUMKenwood DMX958XR Firmware Update Command Injection VulnerabilityEPSS 1.0%