Falhas do tipo CWE-78

3.867 resultados
CVE-2026-0711MEDIUMA post-authentication command injection vulnerability in the EasyMesh-related APIs of Zyxel DX3300-T0 firmware versions through 5.50(ABVY.7.EPSS 0.9%CVE-2021-47794HIGHZesleCP 3.1.9 - Remote Code Execution (RCE) (Authenticated)EPSS 0.9%CVE-2025-59534HIGHCryptoLib command Injection vulnerability in initialize_kerberos_keytab_file_login()EPSS 0.9%CVE-2024-47133HIGHUD-LT1 firmware Ver.2.1.9 and earlier and UD-LT1/EX firmware Ver.2.1.9 and earlier allow a remote authenticated attacker with an administratEPSS 0.9%CVE-2026-1459HIGHA post-authentication command injection vulnerability in the TR-369 certificate download CGI program of the Zyxel VMG3625-T50B firmware versEPSS 0.9%CVE-2023-6260HIGHWeb UI OS Command Injection in Brivo ACS100, ACS300EPSS 0.9%CVE-2024-28138HIGHOS Command InjectionEPSS 0.9%CVE-2026-1723CRITICALTOTOLINK X6000R Unauthenticated Command Injection VulnerabilityEPSS 0.9%CVE-2024-33529HIGHILIAS 7 before 7.30 and ILIAS 8 before 8.11 as well as ILIAS 9.0 allow remote authenticated attackers with administrative privileges to execEPSS 0.9%CVE-2025-64120CRITICALNuvation Energy Multi-Stack Controller OS Command InjectionEPSS 0.9%CVE-2025-9661HIGHOS command injection vulneravility in the management gui (maintenance utility) of Hitachi Virtual Storage Platform One Block 23/24/26/28EPSS 0.9%CVE-2026-28279HIGH`osctrl-admin` Vulnerable to OS Command Injection via Environment ConfigurationEPSS 0.9%CVE-2025-64124HIGHNuvation Energy Multi-Stack Controller OS Command InjectionEPSS 0.9%CVE-2025-53695CRITICALOS Command Injection in iSTAR Ultra products web application allows an authenticated attacker to gain even more privileged access ('root' usEPSS 0.9%CVE-2022-48070HIGHPhicomm K2 v22.6.534.263 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade fEPSS 0.9%CVE-2022-48072HIGHPhicomm K2G v22.6.3.20 was discovered to contain a command injection vulnerability via the autoUpTime parameter in the automatic upgrade funEPSS 0.9%CVE-2025-15101HIGHAn OS command injection vulnerability in the web management interface of certain ASUS router models allows remote authenticated administratoEPSS 0.9%CVE-2024-5670CRITICALSoftnext Mail SQR Expert and Mail Archiving Expert - OS Command InjectionEPSS 0.9%CVE-2024-22222HIGH Dell Unity, versions prior to 5.4, contains an OS Command Injection Vulnerability within its svc_udoctor utility. An authenticated maliciouEPSS 0.9%CVE-2025-37163HIGHAuthenticated Command Injection Vulnerability in HPE Aruba Networking Management Software (AirWave) CLIEPSS 0.9%