Falhas do tipo CWE-78
3.870 resultadosCVE-2025-8655MEDIUMKenwood DMX958XR libSystemLib Command injection Remote Code Execution VulnerabilityEPSS 0.7%CVE-2024-50361HIGHA CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')" was discovered affecting the followingEPSS 0.7%CVE-2025-27392HIGHA vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0). Affected devices do not properly sanitizEPSS 0.7%CVE-2025-27393HIGHA vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0). Affected devices do not properly sanitizEPSS 0.7%CVE-2025-27394HIGHA vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0). Affected devices do not properly sanitizEPSS 0.7%CVE-2021-1421HIGHCisco Enterprise NFV Infrastructure Software Command Injection VulnerabilityEPSS 0.7%CVE-2023-4856HIGH
A format string vulnerability was identified in SMM/SMM2 and FPC that could allow an authenticated user to execute arbitrary commands on a EPSS 0.7%CVE-2026-35018HIGHNetComm NF20MESH < R6B032 Authenticated RCE via OS Command InjectionEPSS 0.7%CVE-2024-51465HIGHIBM App Connect Enterprise Certified Container command executionEPSS 0.7%CVE-2025-23316CRITICALNVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend, where an attacker could cause a remote EPSS 0.7%CVE-2019-1699MEDIUMCisco Firepower Threat Defense Software Command Injection VulnerabilityEPSS 0.7%CVE-2025-24351HIGHA vulnerability in the “Remote Logging” functionality of the web application of ctrlX OS allows a remote authenticated (low-privileged) attaEPSS 0.7%CVE-2024-39228CRITICALGL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16,EPSS 0.7%CVE-2026-33208HIGHRoxy-WI Vulnerable to Authenticated Remote Code Execution via OS Command Injection in find-in-config EndpointEPSS 0.7%CVE-2023-28906HIGHCommand injection in networking serviceEPSS 0.7%CVE-2026-27957HIGHCoolify: Authenticated RCE via command injection in CA certificate management featureEPSS 0.7%CVE-2025-52573MEDIUMCommand Injection in MCP Server ios-simulator-mcpEPSS 0.7%CVE-2026-0758HIGHmcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation VulnerabilityEPSS 0.7%CVE-2026-12195HIGHmyVesta is affected by an authenticated remote code execution vulnerability. Low privileged users can insert arbitrary commands as a part ofEPSS 0.7%CVE-2025-3128CRITICALMitsubishi Electric Europe smartRTU OS Command InjectionEPSS 0.7%