Weaknesses of type CWE-77
2,524 resultsCVE-2022-48259CRITICALThere is a system command injection vulnerability in BiSheng-WNM FW 3.0.0.325. Successful exploitation could allow attackers to gain higher EPSS 0.9%CVE-2026-20095MEDIUMCisco Integrated Management Controller Command Injection VulnerabilityEPSS 0.9%CVE-2024-26294HIGHVulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands onEPSS 0.9%CVE-2024-26295HIGHVulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands onEPSS 0.9%CVE-2024-5023CRITICALArbitrary File Read Vulnerability in ConsoleMe via Limited Git command RCEEPSS 0.9%CVE-2024-26297HIGHVulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands onEPSS 0.9%CVE-2025-22481HIGHQTS, QuTS heroEPSS 0.9%CVE-2024-26296HIGHVulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands onEPSS 0.9%CVE-2024-26298HIGHVulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands onEPSS 0.9%CVE-2026-11487MEDIUMNeovim View Branch secure.lua M.read command injectionEPSS 0.9%CVE-2024-49026HIGHMicrosoft Excel Remote Code Execution VulnerabilityEPSS 0.9%CVE-2026-24712HIGHNorthern.tech CFEngine Enterprise and Community before 3.21.8, 3.24.3, and 3.27.0 allows Command injection.EPSS 0.9%CVE-2025-33246HIGHNVIDIA NeMo Framework for all platforms contains a vulnerability in the ASR Evaluator utility, where a user could cause a command injection EPSS 0.9%CVE-2025-44015LOWHybridDesk StationEPSS 0.9%CVE-2026-44865HIGHAuthenticated Command Injection Vulnerabilities in the Web-Based Management Interface of AOS-8 and AOS-10EPSS 0.9%CVE-2024-55063HIGHMultiple Code Injection vulnerabilities in EasyVirt DC NetScope <= 8.7.0 allows remote authenticated attackers to execute arbitrary code viaEPSS 0.9%CVE-2026-7721MEDIUMTotolink WA300 cstecgi.cgi NTPSyncWithHost command injectionEPSS 0.9%CVE-2026-7718MEDIUMTotolink WA300 POST Request cstecgi.cgi setWebWlanIdx command injectionEPSS 0.9%CVE-2024-4078CRITICALArbitrary Code Execution in parisneo/lollmsEPSS 0.9%CVE-2026-7720MEDIUMTotolink WA300 POST Request cstecgi.cgi setLanguageCfg command injectionEPSS 0.9%