Weaknesses of type CWE-78

3,878 results
CVE-2024-37140HIGHDell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain an OS command injection vulnerability in an aEPSS 1.2%CVE-2021-22657CRITICALmySCADA myPROEPSS 1.2%CVE-2021-23198CRITICALmySCADA myPROEPSS 1.2%CVE-2021-43981CRITICALmySCADA myPROEPSS 1.2%CVE-2026-53478HIGHDell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1EPSS 1.2%CVE-2026-49814HIGHDell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1EPSS 1.2%CVE-2026-25828MEDIUMgrub-btrfs through 2026-01-31 (on Arch Linux and derivative distributions) allows initramfs OS command injection because it does not sanitizEPSS 1.2%CVE-2024-25002HIGHCommand Injection in the diagnostics interface of the Bosch Network Synchronizer allows unauthorized users full access to the device.EPSS 1.2%CVE-2024-6333HIGHAuthenticated Remote Code Execution in Altalink, Versalink & WorkCentre ProductsEPSS 1.2%CVE-2022-40929CRITICALXXL-JOB 2.2.0 has a Command execution vulnerability in background tasks. NOTE: this is disputed because the issues/4929 report is about an iEPSS 1.2%CVE-2024-21898HIGHQTS, QuTS heroEPSS 1.2%CVE-2026-33277HIGHAn OS command Injection issue exists in LogonTracer prior to v2.0.0. An arbitrary OS command may be executed by a logged-in user.EPSS 1.2%CVE-2023-39300HIGHQTSEPSS 1.2%CVE-2024-25626HIGHYocto Project Security Advisory - BitBake/ToasterEPSS 1.2%CVE-2022-34883HIGHOS Command Injection Vulnerability in RAID Manager Storage Replication AdapterEPSS 1.2%CVE-2024-32850CRITICALImproper neutralization of special elements used in a command ('Command Injection') exists in SkyBridge MB-A100/MB-A110 firmware Ver. 4.2.2 EPSS 1.2%CVE-2023-3454HIGHRemote code execution (RCE) vulnerability in Brocade Fabric OS after v9.0 and before v9.2.0 could allow an attacker to execute arbitrary codEPSS 1.2%CVE-2025-37171HIGHAuthenticated Command Injection Vulnerabilities in AOS-8 Web-Based Management InterfaceEPSS 1.2%CVE-2026-21719HIGHAn OS command injection vulnerability exists in CubeCart prior to 6.6.0, which may allow a user with an administrative privilege to execute EPSS 1.2%CVE-2022-47208HIGHThe “puhttpsniff” service, which runs by default, is susceptible to command injection due to improperly sanitized user input. An unauthenticEPSS 1.2%