Fallos del tipo CWE-78

3891 resultados
CVE-2025-53637MEDIUMMeshtastic allows Command Injection in GitHub ActionEPSS 0.3%CVE-2022-20865MEDIUMCisco FXOS Software Command Injection VulnerabilityEPSS 0.3%CVE-2023-29120CRITICALUnauthorized Remote Command Execution in Enel X JuiceboxEPSS 0.3%CVE-2021-1558MEDIUMCisco DNA Spaces Connector Privilege Escalation VulnerabilitiesEPSS 0.3%CVE-2021-1557MEDIUMCisco DNA Spaces Connector Privilege Escalation VulnerabilitiesEPSS 0.3%CVE-2025-20349MEDIUMCisco DNA Center API Command Injection VulnerabilityEPSS 0.3%CVE-2026-33319MEDIUMAVideo Vulnerable to OS Command Injection via Unescaped URL in LinkedIn Video Upload Shell CommandEPSS 0.3%CVE-2026-44346HIGHBentoML: Dockerfile command injection via envs[*].name in bentofile.yamlEPSS 0.3%CVE-2024-22366MEDIUMActive debug code exists in Yamaha wireless LAN access point devices. If a logged-in user who knows how to use the debug function accesses tEPSS 0.3%CVE-2026-27848CRITICALMissing neutralization in Linksys MR9600, Linksys MX4200EPSS 0.3%CVE-2025-64091HIGHAuthenticated Remote Code Execution in the NTP-configurationEPSS 0.3%CVE-2026-45578HIGHWWBN AVideo Live: OS command injection in on_publish.php execAsync via unescaped m3u8 URLEPSS 0.3%CVE-2026-44345HIGHBentoML: Dockerfile command injection via docker.base_imageEPSS 0.3%CVE-2026-9645CRITICALScadaBR Authenticated Remote Code ExecutionEPSS 0.3%CVE-2026-35043HIGHBentoML: command injection in cloud deployment setup script (deployment.py)EPSS 0.3%CVE-2025-36143MEDIUMIBM watsonx.data command executionEPSS 0.3%CVE-2025-27614HIGHGitk allows arbitrary command executionEPSS 0.3%CVE-2026-27849CRITICALMissing neutralization in Linksys MR9600, Linksys MX4200EPSS 0.3%CVE-2024-33793MEDIUMnetis-systems MEX605 v2.00.06 allows attackers to execute arbitrary OS commands via a crafted payload to the ping test page.EPSS 0.3%CVE-2024-37391HIGHProtonVPN before 3.2.10 on Windows mishandles the drive installer path, which should use this: '"' + ExpandConstant('{autopf}\Proton\Drive')EPSS 0.3%