Falhas do tipo CWE-77

2.522 resultados
CVE-2023-22306HIGHAn OS command injection vulnerability exists in the libzebra.so bridge_group functionality of Milesight UR32L v32.3.0.5. A specially craftedEPSS 3.4%CVE-2024-33113MEDIUMD-LINK DIR-845L <=v1.01KRb03 is vulnerable to Information disclosurey via bsc_sms_inbox.php.EPSS 3.4%CVE-2025-6897MEDIUMD-Link DI-7300G+ httpd_debug.asp os command injectionEPSS 3.4%CVE-2025-1845MEDIUMESAFENET DSM examExportPDF command injectionEPSS 3.4%CVE-2026-4554MEDIUMTenda F453 WriteFacMac FormWriteFacMac privilege escalationEPSS 3.4%CVE-2026-3102MEDIUMexiftool PNG File MacOS.pm SetMacOSTags os command injectionEPSS 3.4%CVE-2025-60698HIGHA command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. ThEPSS 3.4%CVE-2026-4204MEDIUMD-Link DNS-1550-04 gui_mgr.cgi cgi_mycloud_auto_downlaod command injectionEPSS 3.4%CVE-2026-4543MEDIUMWavlink WL-WN578W2 POST Request firewall.cgi command injectionEPSS 3.4%CVE-2025-49835HIGHGHSL-2025-047: GPT-SoVITS Command Injection vulnerabilityEPSS 3.4%CVE-2025-49833HIGHGHSL-2025-045: GPT-SoVITS Command Injection vulnerabilityEPSS 3.4%CVE-2023-26822CRITICALD-Link Go-RT-AC750 revA_v101b03 was discovered to contain a command injection vulnerability via the service parameter at soapcgi.main.EPSS 3.4%CVE-2023-51664HIGHtj-actions/changed-files command injection in output filenamesEPSS 3.4%CVE-2026-1544MEDIUMD-Link DIR-823X set_mode sub_41E2A0 os command injectionEPSS 3.3%CVE-2024-7215MEDIUMTOTOLINK LR1200 cstecgi.cgi NTPSyncWithHost command injectionEPSS 3.3%CVE-2022-39073CRITICALThere is a command injection vulnerability in ZTE MF286R, Due to insufficient validation of the input parameters, an attacker could use the EPSS 3.3%CVE-2023-22371HIGHAn os command injection vulnerability exists in the liburvpn.so create_private_key functionality of Milesight VPN v2.0.2. A specially-crafteEPSS 3.3%CVE-2025-4121MEDIUMNetgear JWNR2000v2 cmd_wireless command injectionEPSS 3.3%CVE-2025-57296MEDIUMTenda AC6 router firmware 15.03.05.19 contains a command injection vulnerability in the formSetIptv function, which processes requests to thEPSS 3.3%CVE-2020-3219HIGHCisco IOS XE Software Web UI Command Injection VulnerabilityEPSS 3.3%