Falhas do tipo CWE-78
3.878 resultadosCVE-2026-54088CRITICALFile Browser: Command Injection via Authentication Hook Shell Substitution (Pre-Authentication RCE)EPSS 0.5%CVE-2026-48723HIGHBrowserStack Cypress CL: Command Injection via cypress_config_file leads to arbitrary code execution through malicious browserstack.jsonEPSS 0.5%CVE-2025-0415CRITICALCommand Injection in NTP SettingEPSS 0.5%CVE-2024-21773HIGHMultiple TP-LINK products allow a network-adjacent unauthenticated attacker with access to the product from the LAN port or Wi-Fi to executeEPSS 0.5%CVE-2026-32003HIGHOpenClaw < 2026.2.22 - Remote Code Execution via SHELLOPTS/PS4 Environment Injection in system.runEPSS 0.5%CVE-2023-6926HIGHImproper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in Crestron AM-300EPSS 0.5%CVE-2026-34597HIGHCoolify: Authenticated Host RCEEPSS 0.5%CVE-2025-55048CRITICALMultiple CWE-78EPSS 0.5%CVE-2026-31995MEDIUMOpenClaw 2026.1.21 < 2026.2.19 - Command Injection via Windows Shell Fallback in Lobster ExtensionEPSS 0.5%CVE-2024-2421CRITICALLenelS2 NetBox Improper Neutralization of Special ElementsEPSS 0.5%CVE-2026-41613HIGHVisual Studio Code Elevation of Privilege VulnerabilityEPSS 0.5%CVE-2023-37937HIGHAn improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSwitch version 7.4.0 and 7.2.EPSS 0.5%CVE-2020-21583—An issue was discovered in hwclock.13-v2.27 allows attackers to gain escalated privlidges or execute arbitrary commands via the path parametEPSS 0.5%CVE-2025-22605HIGHCoolify OS Command Injection Vulnerability in SSH Command GenerationEPSS 0.5%CVE-2025-24377HIGHDell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command InjectionEPSS 0.5%CVE-2025-46422HIGHDell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command InjectionEPSS 0.5%CVE-2025-46423HIGHDell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements used in an OS Command ('OS Command InjectionEPSS 0.5%CVE-2023-7338HIGHRuckus Unleashed Authenticated RCE in Gateway ModeEPSS 0.5%CVE-2018-25143HIGHMicrohard Systems IPn4G 1.1.0 Backdoor Jailbreak via Microhard Sh ServiceEPSS 0.5%CVE-2019-15274MEDIUMCisco TelePresence Collaboration Endpoint Software Command Injection VulnerabilityEPSS 0.5%