Falhas do tipo CWE-78

3.849 resultados
CVE-2025-53472HIGHWRC-BE36QS-B and WRC-W701-B contain an improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerabilEPSS 1.1%CVE-2026-9565MEDIUMhaojing8312 WorkClaw Blacklist bash.rs is_dangerous os command injectionEPSS 1.1%CVE-2025-66279HIGHQTS, QuTS heroEPSS 1.0%CVE-2024-42747HIGHIn TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command injection vulnerability in setWanIeCfg. AutEPSS 1.0%CVE-2025-66273HIGHQTS, QuTS heroEPSS 1.0%CVE-2024-30645HIGHTenda AC15V1.0 V15.03.20_multi has a command injection vulnerability via the deviceName parameter.EPSS 1.0%CVE-2026-38060CRITICALTenda 5G03 V05.03.02.04 (Version 1.0) is vulnerable to Command injection in the function action_unlock_sim via the pin parameter.EPSS 1.0%CVE-2026-38062CRITICALTenda 5G03 V05.03.02.04 (Version 1.0) is vulnerable to Command injection in the function action_set_rat_mode via the ratMode parameter.EPSS 1.0%CVE-2025-63261HIGHAWStats 8.0 is vulnerable to Command Injection via the open functionEPSS 1.0%CVE-2026-38061CRITICALTenda 5G03 V05.03.02.04 (Version 1.0) is vulnerable to Command injection in the function action_set_volume via the volume parameter.EPSS 1.0%CVE-2026-38064CRITICALTenda 5G03 V05.03.02.04 (Version 1.0) is vulnerable to Command injection in the function action_dial_call via the dialNumber parameter.EPSS 1.0%CVE-2026-30703CRITICALA command injection vulnerability exists in the web management interface of the WiFi Extender WDR201A (HW V2.1, FW LFMZX28040922V1.02). The EPSS 1.0%CVE-2026-38063CRITICALTenda 5G03 V05.03.02.04 (Version 1.0) is vulnerable to Command injection in the function action_radio_on_with_ia_apn via the ia parameter.EPSS 1.0%CVE-2026-11341MEDIUMD-Link DWR-M920 formIMEISetup sub_412DA0 os command injectionEPSS 1.0%CVE-2021-47851CRITICALMini Mouse 9.2.0 - Remote Code ExecutionEPSS 1.0%CVE-2023-47709CRITICALIBM Security Guardium command injectionEPSS 1.0%CVE-2024-48863HIGHLicense CenterEPSS 1.0%CVE-2024-50363HIGHA CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')" was discovered affecting the followingEPSS 1.0%CVE-2024-50367HIGHA CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')" was discovered affecting the followingEPSS 1.0%CVE-2024-50369HIGHA CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')" was discovered affecting the followingEPSS 1.0%