CWE-77 在命令中使用的特殊元素转义处理不恰当(命令注入) 类弱点 1146 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | 发布日期 |
|---|---|---|---|---|
| CVE-2026-41265 | Flowise 命令注入漏洞 — Flowise | 9.6AI | CriticalAI | 2026-04-23 |
| CVE-2026-41304 | WWBN AVideo 命令注入漏洞 — AVideo | 8.8AI | HighAI | 2026-04-21 |
| CVE-2026-6799 | Comfast CF-N1-S 注入漏洞 — CF-N1-S | 6.3 | Medium | 2026-04-21 |
| CVE-2026-39866 | Lawnchair 安全漏洞 — lawnchair | 8.8AI | HighAI | 2026-04-21 |
| CVE-2026-4048 | Progress LoadMaster 安全漏洞 — LoadMaster | 8.4 | High | 2026-04-20 |
| CVE-2026-3519 | Progress LoadMaster 安全漏洞 — LoadMaster | 8.4 | High | 2026-04-20 |
| CVE-2026-3518 | Progress LoadMaster 安全漏洞 — LoadMaster | 8.4 | High | 2026-04-20 |
| CVE-2026-3517 | Progress LoadMaster 安全漏洞 — LoadMaster | 8.4 | High | 2026-04-20 |
| CVE-2026-6576 | DjangoBlog 安全漏洞 — DjangoBlog | 6.3 | Medium | 2026-04-19 |
| CVE-2026-30898 | Apache Airflow 安全漏洞 — Apache Airflow | 8.8AI | HighAI | 2026-04-18 |
| CVE-2026-35682 | Anviz CX2 Lite 安全漏洞 — Anviz CX2 Lite Firmware | 8.8 | High | 2026-04-17 |
| CVE-2026-21709 | Veeam Backup And Replication 安全漏洞 — Backup and Replication | 6.0AI | MediumAI | 2026-04-17 |
| CVE-2026-41153 | JetBrains Junie 安全漏洞 — Junie | 5.8 | Medium | 2026-04-17 |
| CVE-2026-23779 | Dell PowerProtect Data Domain(Dell PowerProtect DD) 安全漏洞 — PowerProtect Data Domain | 6.7 | Medium | 2026-04-17 |
| CVE-2026-23778 | Dell PowerProtect Data Domain 安全漏洞 — PowerProtect Data Domain | 7.2 | High | 2026-04-17 |
| CVE-2026-20186 | Cisco Identity Services Engine 安全漏洞 — Cisco Identity Services Engine Software | 9.9 | Critical | 2026-04-15 |
| CVE-2026-20147 | Cisco ISE和Cisco ISE-PIC 安全漏洞 — Cisco Identity Services Engine Software | 9.9 | Critical | 2026-04-15 |
| CVE-2026-32183 | Microsoft Snipping Tool 命令注入漏洞 — Windows 10 Version 1607 | 7.8 | High | 2026-04-14 |
| CVE-2026-23653 | Microsoft GitHub Copilot and Visual Studio Code 命令注入漏洞 — Microsoft Visual Studio Code CoPilot Chat Extension | 5.7 | Medium | 2026-04-14 |
| CVE-2026-4786 | CPython 安全漏洞 — CPython | 9.8 | - | 2026-04-13 |
| CVE-2026-6219 | ytDownloader 命令注入漏洞 — ytDownloader | 5.3 | Medium | 2026-04-13 |
| CVE-2026-6118 | AstrBot 命令注入漏洞 — AstrBot | 6.3 | Medium | 2026-04-12 |
| CVE-2026-5833 | TaskWarrior MCP Server 命令注入漏洞 — mcp-server-taskwarrior | 5.3 | Medium | 2026-04-09 |
| CVE-2026-35580 | Emissary 命令注入漏洞 — emissary | 9.1 | Critical | 2026-04-07 |
| CVE-2026-35558 | Amazon Athena ODBC driver 安全漏洞 — Amazon Athena ODBC driver | 7.8 | High | 2026-04-03 |
| CVE-2026-5463 | Pymetasploit3 安全漏洞 — pymetasploit3 | 8.6 | High | 2026-04-03 |
| CVE-2026-5339 | Tenda G103 命令注入漏洞 — G103 | 4.7 | Medium | 2026-04-02 |
| CVE-2026-5338 | Tenda G103 命令注入漏洞 — G103 | 4.7 | Medium | 2026-04-02 |
| CVE-2026-5333 | Content Management System 命令注入漏洞 — Content-Management-System | 7.3 | High | 2026-04-02 |
| CVE-2026-5327 | fast-filesystem-mcp 命令注入漏洞 — fast-filesystem-mcp | 6.3 | Medium | 2026-04-02 |
CWE-77(在命令中使用的特殊元素转义处理不恰当(命令注入)) 是常见的弱点类别,本平台收录该类弱点关联的 1146 条 CVE 漏洞。