Weaknesses of type CWE-78
3,888 resultsCVE-2025-24351HIGHA vulnerability in the “Remote Logging” functionality of the web application of ctrlX OS allows a remote authenticated (low-privileged) attaEPSS 0.7%CVE-2024-39228CRITICALGL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16,EPSS 0.7%CVE-2026-33208HIGHRoxy-WI Vulnerable to Authenticated Remote Code Execution via OS Command Injection in find-in-config EndpointEPSS 0.7%CVE-2023-28906HIGHCommand injection in networking serviceEPSS 0.7%CVE-2024-47608MEDIUMLogicytics vulnerable to shell injectionsEPSS 0.7%CVE-2026-0758HIGHmcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation VulnerabilityEPSS 0.7%CVE-2025-52573MEDIUMCommand Injection in MCP Server ios-simulator-mcpEPSS 0.7%CVE-2026-27957HIGHCoolify: Authenticated RCE via command injection in CA certificate management featureEPSS 0.7%CVE-2026-12195HIGHmyVesta is affected by an authenticated remote code execution vulnerability. Low privileged users can insert arbitrary commands as a part ofEPSS 0.7%CVE-2026-27208CRITICALapi-gateway-deploy Affected by Exploitable Command Injection via Unprivileged Root ExecutionEPSS 0.7%CVE-2025-3128CRITICALMitsubishi Electric Europe smartRTU OS Command InjectionEPSS 0.7%CVE-2026-48163HIGHMariaDB: wsrep SST unsafe parameter handling on the donor side (rsync)EPSS 0.7%CVE-2024-48074HIGHAn authorized RCE vulnerability exists in the DrayTek Vigor2960 router version 1.4.4, where an attacker can place a malicious command into tEPSS 0.7%CVE-2020-37002HIGHAjenti 2.1.36 Authenticated Remote Code ExecutionEPSS 0.7%CVE-2026-55975HIGHH.VIEW HV-500S6 IP Camera OS Command InjectionEPSS 0.7%CVE-2026-28291HIGHsimple-git has Command Execution via Option-Parsing BypassEPSS 0.7%CVE-2026-42454CRITICALTermix: OS Command Injection in Docker Container Management EndpointsEPSS 0.7%CVE-2024-36491CRITICALFutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. allow an administrative user to execute an arbitrary OEPSS 0.7%CVE-2025-59051HIGHFreePBX Endpoint Manager command injection via Network Scanning featureEPSS 0.6%CVE-2026-3959MEDIUM0xKoda WireMCP Tshark CLI index.js server.tool os command injectionEPSS 0.6%