Weaknesses of type CWE-78

3,885 results
CVE-2024-0815CRITICALCommand injection in paddle.utils.download._wget_download (bypass filter) in paddlepaddle/paddle 2.6.0EPSS 1.1%CVE-2024-57595CRITICALDLINK DIR-825 REVB 2.03 devices have an OS command injection vulnerability in the CGl interface apc_client_pin.cgi, which allows remote attaEPSS 1.1%CVE-2023-33239HIGHSecond Order Command-injection Vulnerability in the Key-generation FunctionEPSS 1.1%CVE-2023-4855HIGH A command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user with elevated privileges to exeEPSS 1.1%CVE-2026-6893HIGHDracut: dracut: root code execution via dhcp options command injectionEPSS 1.1%CVE-2024-2659HIGH A command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user with elevated privileges to exeEPSS 1.1%CVE-2026-50043HIGHImproper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in SkyBridge MB-A100/MB-A110. If thiEPSS 1.1%CVE-2023-45025CRITICALQTS, QuTS hero, QuTScloudEPSS 1.1%CVE-2024-11253HIGHA post-authentication command injection vulnerability in the "DNSServer” parameter of the diagnostic function in the Zyxel VMG8825-T50K firmEPSS 1.1%CVE-2024-12009HIGHA post-authentication command injection vulnerability in the "ZyEE" function of the Zyxel EX5601-T1 firmware version V5.70(ACDZ.3.6)C0 and eEPSS 1.1%CVE-2023-22279CRITICALMAHO-PBX NetDevancer Lite/Uni/Pro/Cloud prior to Ver.1.11.00, MAHO-PBX NetDevancer VSG Lite/Uni prior to Ver.1.11.00, and MAHO-PBX NetDevancEPSS 1.1%CVE-2023-37292CRITICALHGiga iSherlock - Command InjectionEPSS 1.1%CVE-2026-9773HIGHUnraid Web Server ToggleState Command Injection Remote Code Execution VulnerabilityEPSS 1.1%CVE-2025-9588CRITICALOS Command Injection in Iron Mountain's enVisionEPSS 1.1%CVE-2023-47560HIGHQuMagieEPSS 1.1%CVE-2023-41289MEDIUMQcalAgentEPSS 1.1%CVE-2023-39294MEDIUMQTS, QuTS heroEPSS 1.1%CVE-2025-49813MEDIUMAn improper neutralization of special elements used in an OS Command ("OS Command Injection") vulnerability [CWE-78] in Fortinet FortiADC veEPSS 1.1%CVE-2020-36198MEDIUMCommand Injection Vulnerability in Malware RemoverEPSS 1.1%CVE-2025-37170HIGHAuthenticated Command Injection Vulnerabilities in AOS-8 Web-Based Management InterfaceEPSS 1.1%