Weaknesses of type CWE-78
3,885 resultsCVE-2026-26191MEDIUMFleet vulnerable to OS command injection in software packagesEPSS 0.8%CVE-2024-46329HIGHVONETS VAP11G-300 v3.3.23.6.9 was discovered to contain a command injection vulnerability via the SystemCommand object.EPSS 0.8%CVE-2026-5416HIGHCommand Injection via name parameterEPSS 0.8%CVE-2026-0980HIGHRubyipmi: red hat satellite: remote code execution in rubyipmi via malicious bmc usernameEPSS 0.8%CVE-2024-54008HIGHAuthenticated Remote Code Execution (RCE) in HPE Aruba Networking AirWave Management PlatformEPSS 0.8%CVE-2024-49803CRITICALIBM Security Verify Access Appliance command executionEPSS 0.8%CVE-2024-45798CRITICALMultiple Poisoned Pipeline Execution (PPE) vulnerabilitiesEPSS 0.8%CVE-2024-11858HIGHRadare2: command injection via pebble application files in radare2EPSS 0.8%CVE-2026-46394HIGHHAX CMS Vulnerable to Command Injection using Git.phpEPSS 0.8%CVE-2024-46330HIGHVONETS VAP11G-300 v3.3.23.6.9 was discovered to contain a command injection vulnerability via the iptablesWebsFilterRun object.EPSS 0.8%CVE-2023-46510—An issue in ZIONCOM (Hong Kong) Technology Limited A7000R v.4.1cu.4154 allows an attacker to execute arbitrary code via the cig-bin/cstecgi.EPSS 0.8%CVE-2026-1665MEDIUMCommand Injection in nvm via NVM_AUTH_HEADER in wget code pathEPSS 0.8%CVE-2024-28749HIGHifm: Writing file function in Smart PLC allows command injections EPSS 0.8%CVE-2023-43068HIGH
Dell SmartFabric Storage Software v1.4 (and earlier) contains an OS Command Injection Vulnerability in the restricted shell in SSH. An authEPSS 0.8%CVE-2024-28750HIGHifm: Deleting function in Smart PLC allows command injectionsEPSS 0.8%CVE-2024-28748HIGHifm: Reading function in Smart PLC allows command injections EPSS 0.8%CVE-2026-55607HIGHClaude Code: Sandbox Escape via Git Worktree Path Confusion Allows Unsandboxed Code ExecutionEPSS 0.8%CVE-2024-7699HIGHPhoenix Contact: OS command execution in MGUARD productsEPSS 0.8%CVE-2025-8654HIGHKenwood DMX958XR ReadMVGImage Command Injection Remote Code Execution VulnerabilityEPSS 0.8%CVE-2026-45630CRITICALDokploy: Authenticated Remote Code Execution via Command Injection in updateTraefikConfig Echo StatementEPSS 0.8%