Falhas do tipo CWE-78

3.840 resultados
CVE-2025-34093HIGHPolycom HDX Series Telnet Command Injection via lan tracerouteEPSS 2.0%CVE-2026-45744CRITICALTermix has an OS Command Injection in File Manager resolvePath endpointEPSS 2.0%CVE-2021-23031On version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4.1, 13.1.x before 13.1.4, 12.1.x before 12.1.6, and 11.6.x befoEPSS 2.0%CVE-2026-9436CRITICALTotolink A8000RU Web Management cstecgi.cgi setL2tpServerCfg os command injectionEPSS 2.0%CVE-2025-66401CRITICALMCP Watch has a Critical Command Injection in cloneRepo allows Remote Code Execution (RCE) via malicious URLEPSS 2.0%CVE-2026-26478CRITICALA shell command injection vulnerability in Mobvoi Tichome Mini smart speaker 012-18853 and 027-58389 allows remote attackers to send a speciEPSS 2.0%CVE-2021-39826HIGHAdobe Digital Editions Command Execution VulnerabilityEPSS 2.0%CVE-2022-44019HIGHIn Total.js 4 before 0e5ace7, /api/common/ping can achieve remote command execution via shell metacharacters in the host parameter.EPSS 2.0%CVE-2023-38673CRITICALCommand injection in fs.pyEPSS 2.0%CVE-2025-34112CRITICALRiverbed SteelCentral NetProfiler / NetExpress 10.8.7 RCEEPSS 2.0%CVE-2025-15379CRITICALCommand Injection in mlflow/mlflowEPSS 2.0%CVE-2026-30302CRITICALThe command auto-approval module in CodeRider-Kilo contains an OS Command Injection vulnerability, rendering its whitelist security mechanisEPSS 2.0%CVE-2026-2544MEDIUMyued-fe LuLu UI run.js child_process.exec os command injectionEPSS 2.0%CVE-2026-40933CRITICALFlowise: Authenticated RCE Via MCP AdaptersEPSS 2.0%CVE-2020-15271CRITICALShell Command Execution in lookatmeEPSS 2.0%CVE-2024-45888HIGHDrayTek Vigor3900 1.5.1.3 contains a command injection vulnerability. This vulnerability occurs when the `action` parameter in `cgi-bin/mainEPSS 2.0%CVE-2020-5350HIGHDell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4 contain a command injection vulnerability in the ACM componenEPSS 2.0%CVE-2025-23049HIGHMeridian Technique Materialise OrthoView through 7.5.1 allows OS Command Injection when servlet sharing is enabled.EPSS 2.0%CVE-2026-32917CRITICALOpenClaw < 2026.3.13 - Remote Command Injection via Unsanitized iMessage Attachment Paths in SCPEPSS 2.0%CVE-2024-44342HIGHD-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution (RCE) vulnerability via the wl(0).(0)_ssid parameter. This EPSS 2.0%