Falhas do tipo CWE-78

3.847 resultados
CVE-2026-53478HIGHDell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1EPSS 1.2%CVE-2026-49814HIGHDell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1EPSS 1.2%CVE-2026-25828MEDIUMgrub-btrfs through 2026-01-31 (on Arch Linux and derivative distributions) allows initramfs OS command injection because it does not sanitizEPSS 1.2%CVE-2024-21898HIGHQTS, QuTS heroEPSS 1.2%CVE-2024-25002HIGHCommand Injection in the diagnostics interface of the Bosch Network Synchronizer allows unauthorized users full access to the device.EPSS 1.2%CVE-2022-40929CRITICALXXL-JOB 2.2.0 has a Command execution vulnerability in background tasks. NOTE: this is disputed because the issues/4929 report is about an iEPSS 1.2%CVE-2024-6333HIGHAuthenticated Remote Code Execution in Altalink, Versalink & WorkCentre ProductsEPSS 1.2%CVE-2026-33277HIGHAn OS command Injection issue exists in LogonTracer prior to v2.0.0. An arbitrary OS command may be executed by a logged-in user.EPSS 1.2%CVE-2023-39300HIGHQTSEPSS 1.2%CVE-2024-25626HIGHYocto Project Security Advisory - BitBake/ToasterEPSS 1.2%CVE-2024-32850CRITICALImproper neutralization of special elements used in a command ('Command Injection') exists in SkyBridge MB-A100/MB-A110 firmware Ver. 4.2.2 EPSS 1.2%CVE-2023-3454HIGHRemote code execution (RCE) vulnerability in Brocade Fabric OS after v9.0 and before v9.2.0 could allow an attacker to execute arbitrary codEPSS 1.2%CVE-2026-21719HIGHAn OS command injection vulnerability exists in CubeCart prior to 6.6.0, which may allow a user with an administrative privilege to execute EPSS 1.2%CVE-2022-47208HIGHThe “puhttpsniff” service, which runs by default, is susceptible to command injection due to improperly sanitized user input. An unauthenticEPSS 1.2%CVE-2025-37171HIGHAuthenticated Command Injection Vulnerabilities in AOS-8 Web-Based Management InterfaceEPSS 1.2%CVE-2023-41346HIGHASUS RT-AX55 - command injection - 2EPSS 1.2%CVE-2024-34210HIGHTOTOLINK outdoor CPE CP450 v4.1.0cu.747_B20191224 was discovered to contain a command injection vulnerability in the CloudACMunualUpdate funEPSS 1.2%CVE-2026-8217MEDIUMIndustrial Application Software IAS Canias ERP RMI Runtime.getRuntime.exec os command injectionEPSS 1.2%CVE-2026-30314CRITICALRidvay Code's command auto-approval module contains a critical OS command injection vulnerability that renders its whitelist security mechanEPSS 1.2%CVE-2026-27487HIGHOpenClaw: Prevent shell injection in macOS keychain credential writeEPSS 1.2%