Weaknesses of type CWE-78
3,891 resultsCVE-2019-1732MEDIUMCisco NX-OS Software Remote Package Manager Command Injection VulnerabilityEPSS 0.4%CVE-2026-33145MEDIUMxrdp: Authenticated RCE via unsanitized AlternateShell execution in xrdp-sesmanEPSS 0.4%CVE-2026-1345HIGHSecurity Vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify AccessEPSS 0.4%CVE-2025-20193MEDIUMA vulnerability in the web-based management interface of Cisco IOS XE Software could allow an authenticated, low-privileged, remote attackerEPSS 0.4%CVE-2025-63408MEDIUMLocal Agent DVR versions thru 6.6.1.0 are vulnerable to directory traversal that allows an unauthenticated local attacker to gain access to EPSS 0.4%CVE-2026-34058HIGHCoolify: OS Command Injection via Unmanaged Container Operations - Remote Code ExecutionEPSS 0.4%CVE-2025-45378CRITICALDell CloudLink, versions 8.0 through 8.1.2, contain vulnerability on restricted shell. A Privileged user with known password can break into EPSS 0.3%CVE-2023-28805MEDIUMZCC on Linux privilege escalationEPSS 0.3%CVE-2026-34057HIGHCoolify: Authenticated Remote Code Execution via Command Injection in Database Import Container NameEPSS 0.3%CVE-2025-24936CRITICALInsufficient Validation of Input in the URLEPSS 0.3%CVE-2025-13688MEDIUMDataStage on Cloud Pak for Data is vulnerable to arbitrary code injection due to runtime environmentEPSS 0.3%CVE-2025-13686MEDIUMDataStage on Cloud Pak for Data is vulnerable to arbitrary code injection due to runtime environmentEPSS 0.3%CVE-2025-13687MEDIUMDataStage on Cloud Pak for Data is vulnerable to arbitrary code injection due to runtime environmentEPSS 0.3%CVE-2025-54430CRITICALdedupe is vulnerable to secret exfiltration via `issue_comment`EPSS 0.3%CVE-2024-20326HIGHA vulnerability in the ConfD CLI and the Cisco Crosswork Network Services Orchestrator CLI could allow an authenticated, low-privileged, loEPSS 0.3%CVE-2026-34035HIGHCoolify: Host RCE via Log Drain secret/env command injectionEPSS 0.3%CVE-2026-49492HIGHMarkdown Preview Enhanced OS Command Injection in External File and Link OpeningEPSS 0.3%CVE-2026-5935HIGHTSSC/IMC is vulnerable to OS Command InjectionEPSS 0.3%CVE-2024-32477HIGHRace condition when flushing input stream leads to permission prompt bypassEPSS 0.3%CVE-2026-46716CRITICALNezha Monitoring: RoleMember can run shell on every server (cross-tenant RCE) via POST /api/v1/cronEPSS 0.3%