Falhas do tipo CWE-78

3.846 resultados
CVE-2024-45827HIGHImproper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in Mesh Wi-Fi router RP562B firmwareEPSS 1.6%CVE-2024-1367HIGHCommand Injection Vulnerability in Tenable Security CenterEPSS 1.6%CVE-2020-15121HIGHCommand injection in Radare2EPSS 1.6%CVE-2024-53899HIGHvirtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not EPSS 1.6%CVE-2021-28812HIGHCommand Injection Vulnerability in Video StationEPSS 1.6%CVE-2024-40893MEDIUMFirewalla BTLE Authenticated Command InjectionEPSS 1.6%CVE-2026-56808HIGHDGM3103SCT provided by AVTECH Security Corporation contains an OS command injection vulnerability, which may lead to arbitrary command execuEPSS 1.6%CVE-2024-39351HIGHA vulnerability regarding improper neutralization of special elements used in an OS command ('OS Command Injection') is found in the NTP conEPSS 1.5%CVE-2022-25908HIGHAll versions of the package create-choo-electron are vulnerable to Command Injection via the devInstall function due to improper user-inputEPSS 1.5%CVE-2022-33186CRITICALA vulnerability in Brocade Fabric OS software v9.1.1, v9.0.1e, v8.2.3c, v7.4.2j, and earlier versions could allow a remote unauthenticated aEPSS 1.5%CVE-2023-30764CRITICALOS command injection vulnerability exists in KB-AHR series and KB-IRIP series. If this vulnerability is exploited, an arbitrary OS command mEPSS 1.5%CVE-2026-23699HIGHAP180 series with firmware versions prior to AP_RGOS 11.9(4)B1P8 contains an OS command injection vulnerability. If this vulnerability is exEPSS 1.5%CVE-2021-3059HIGHPAN-OS: OS Command Injection Vulnerability When Performing Dynamic UpdatesEPSS 1.5%CVE-2026-34005HIGHIn Sofia on Xiongmai DVR/NVR (AHB7008T-MH-V2 and NBD7024H-P) 4.03.R11 devices, root OS command injection can occur via shell metacharacters EPSS 1.5%CVE-2025-61045HIGHTOTOLINK X18 V9.1.0cu.2053_B20230309 was discovered to contain a command injection vulnerability via the mac parameter in the setEasyMeshAgeEPSS 1.5%CVE-2023-48802CRITICALIn TOTOLINK X6000R V9.4.0cu.852_B20230719, the shttpd file, sub_4119A0 function obtains fields from the front-end through Uci_ Set_ The Str EPSS 1.5%CVE-2025-5243CRITICALArbitrary File Upload in SMG Software's Information PortalEPSS 1.5%CVE-2026-2035MEDIUMDeciso OPNsense diag_backup.php filename Command Injection Remote Code Execution VulnerabilityEPSS 1.5%CVE-2025-34055CRITICALAVTECH IP camera, DVR, and NVR Devices Authenticated Root Command ExecutionEPSS 1.5%CVE-2024-39401HIGHAdobe Commerce | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)EPSS 1.5%