Falhas do tipo CWE-77
2.522 resultadosCVE-2026-4585CRITICALTiandy Easy7 Integrated Management Platform Configuration ImportSystemConfiguration.jsp os command injectionEPSS 3.3%CVE-2025-60697HIGHA command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02 within the `prog.cgi` and `rc` binaries. ThEPSS 3.3%CVE-2025-1369LOWMicroWord eScan Antivirus USB Password os command injectionEPSS 3.3%CVE-2025-49836HIGHGHSL-2025-048: GPT-SoVITS Command Injection vulnerabilityEPSS 3.3%CVE-2025-49834HIGHGHSL-2025-046: GPT-SoVITS Command Injection vulnerabilityEPSS 3.3%CVE-2025-15256MEDIUMEdimax BR-6208AC Web-based Configuration formStaDrvSetup command injectionEPSS 3.3%CVE-2023-1458HIGHA vulnerability has been found in Ubiquiti EdgeRouter X 2.0.9-hotfix.6 and classified as critical. Affected by this vulnerability is an unknEPSS 3.3%CVE-2026-26068CRITICALemp3r0r Agent-Controlled Metadata to Operator RCE (tmux Command Injection)EPSS 3.3%CVE-2025-4349HIGHD-Link DIR-600L formSysCmd command injectionEPSS 3.3%CVE-2025-4350HIGHD-Link DIR-600L wake_on_lan command injectionEPSS 3.3%CVE-2026-7119HIGHTenda HG3 formCountrystr os command injectionEPSS 3.3%CVE-2026-7160HIGHTenda HG3 formTracert command injectionEPSS 3.3%CVE-2019-6552—Advantech WebAccess/SCADA, Versions 8.3.5 and prior. Multiple command injection vulnerabilities, caused by a lack of proper validation of usEPSS 3.3%CVE-2025-15254MEDIUMTenda W6-S ATE Service ate TendaAte os command injectionEPSS 3.3%CVE-2024-35242HIGHComposer vulnerable to command injection via malicious git/hg branch namesEPSS 3.3%CVE-2016-8628HIGHAnsible before version 2.2.0 fails to properly sanitize fact variables sent from the Ansible controller. An attacker with the ability to creEPSS 3.3%CVE-2025-8259MEDIUMVaelsys VaelsysV4 Web interface vgrid_server.php execute_DataObjectProc os command injectionEPSS 3.2%CVE-2024-5035HIGHTP-Link Archer C5400X - RFTest Unauthenticated Command InjectionEPSS 3.2%CVE-2024-21488HIGHVersions of the package network before 0.7.0 are vulnerable to Arbitrary Command Injection due to use of the child_process exec function witEPSS 3.2%CVE-2026-4206MEDIUMD-Link DNS-1550-04 dsk_mgr.cgi ScanDisk_run_e2fsck command injectionEPSS 3.2%