Falhas do tipo CWE-78

3.840 resultados
CVE-2026-9432CRITICALTotolink A8000RU Web Management cstecgi.cgi setWiFiAdvancedCfg os command injectionEPSS 1.7%CVE-2026-9405CRITICALTotolink A8000RU Web Management cstecgi.cgi setGameSpeedCfg os command injectionEPSS 1.7%CVE-2024-27772HIGHUnitronics Unistream Unilogic – Versions prior to 1.35.227 CWE-78: 'OS Command Injection'EPSS 1.7%CVE-2025-25067CRITICALmySCADA myPRO Manager OS Command InjectionEPSS 1.7%CVE-2024-29185CRITICALFreeScout OS Command Injection vulnerabilityEPSS 1.7%CVE-2021-33533HIGHWEIDMUELLER: WLAN devices affected by OS Command Injection vulnerabilityEPSS 1.7%CVE-2021-33532HIGHWEIDMUELLER: WLAN devices affected by OS Command Injection vulnerabilityEPSS 1.7%CVE-2024-24332CRITICALTOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the url parameter in the setUrlFilteEPSS 1.7%CVE-2024-24325CRITICALTOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the enable parameter in the setParenEPSS 1.7%CVE-2021-33530HIGHWEIDMUELLER: WLAN devices affected by OS Command Injection vulnerabilityEPSS 1.7%CVE-2024-57542HIGHLinksys E8450 v1.2.00.360516 was discovered to contain a command injection vulnerability via the field id_email_check_btn.EPSS 1.7%CVE-2026-27728CRITICALOneUptime: OS Command Injection in Probe NetworkPathMonitor via unsanitized destination in traceroute exec()EPSS 1.7%CVE-2026-45748CRITICALTermix Vulnerable to Remote Code Execution via SSH Tunnel Forward Command InjectionEPSS 1.7%CVE-2024-23059CRITICALTOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the username parameter in the setDdnEPSS 1.7%CVE-2024-23061CRITICALTOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the minute parameter in the setSchedEPSS 1.7%CVE-2025-56096HIGHOS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitrary commands via a crafted POST request tEPSS 1.7%CVE-2023-1997HIGHOS Command Injection vulnerability affecting SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023xEPSS 1.7%CVE-2025-56498MEDIUMAn OS command injection vulnerability exists in PLDT WiFi Router's Prolink PGN6401V Firmware 8.1.2 web management interface. The ping6.asp pEPSS 1.7%CVE-2026-45322HIGHOS Command Injection in Microsoft UFO Shell Action Replay via Stored Session JSONEPSS 1.7%CVE-2026-5663MEDIUMOFFIS DCMTK storescp storescp.cc executeOnEndOfStudy os command injectionEPSS 1.7%