Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-77 (在命令中使用的特殊元素转义处理不恰当(命令注入)) — Vulnerability Class 1153

1153 vulnerabilities classified as CWE-77 (在命令中使用的特殊元素转义处理不恰当(命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-43589 DELL Dell EMC Unity 操作系统操作系统命令注入漏洞 — Unity 6.0 Medium2022-01-24
CVE-2021-38542 Apache James vulnerable to STARTTLS command injection (IMAP and POP3) — Apache James 5.9 -2022-01-04
CVE-2021-3621 SSSD 操作系统命令注入漏洞 — sssd 8.8 -2021-12-23
CVE-2021-27447 Mesa Labs AmegaView command injection — AmegaView 10.0 Critical2021-12-21
CVE-2021-27449 Mesa Labs AmegaView Command Injection — AmegaView 9.9 Critical2021-12-21
CVE-2021-42132 Ivanti Avalanche 命令注入漏洞 — Ivanti Avalanche 8.8 -2021-12-07
CVE-2021-42129 Ivanti Avalanche 命令注入漏洞 — Ivanti Avalanche 8.8 -2021-12-07
CVE-2021-41146 Arbitrary command execution on Windows in qutebrowser — qutebrowser 8.8 High2021-10-21
CVE-2021-31358 Junos OS Evolved: shell-injection vulnerabilities in evo_sftp UI wrapper script — Junos OS Evolved 7.8 High2021-10-19
CVE-2021-31357 Junos OS Evolved: shell-injection vulnerabilities in evo_tcpdump UI wrapper script — Junos OS Evolved 7.8 High2021-10-19
CVE-2021-31356 Junos OS Evolved: Multiple shell-injection vulnerabilities in EVO UI wrapper scripts — Junos OS Evolved 7.8 High2021-10-19
CVE-2021-34748 Cisco Intersight Virtual Appliance Command Injection Vulnerability — Cisco Intersight Virtual Appliance 8.8 High2021-10-06
CVE-2021-41116 Command injection in composer on Windows — composer 8.2 High2021-10-05
CVE-2021-22868 Unsafe configuration options in GitHub Pages leading to path traversal on GitHub Enterprise Server — GitHub Enterprise Server 6.5 -2021-09-24
CVE-2021-34729 Cisco IOS XE SD-WAN Software Command Injection Vulnerability — Cisco IOS XE SD-WAN Software 6.7 Medium2021-09-23
CVE-2021-34726 Cisco SD-WAN Software Command Injection Vulnerability — Cisco SD-WAN Solution 6.7 -2021-09-23
CVE-2021-34725 Cisco IOS XE SD-WAN Software Command Injection Vulnerability — Cisco IOS XE SD-WAN Software 6.7 Medium2021-09-23
CVE-2020-26300 Command injection in systeminformation — systeminformation 5.9 Medium2021-09-09
CVE-2021-21595 DELL EMC PowerScale 命令注入漏洞 — PowerScale OneFS 6.0 Medium2021-08-16
CVE-2021-37708 Command injection in mail agent settings — platform 8.8 High2021-08-16
CVE-2021-22935 Pulse Secure Pulse Connect Secure 命令注入漏洞 — Pulse Connect Secure 7.2 -2021-08-16
CVE-2021-22938 Pulse Secure Pulse Connect Secure 命令注入漏洞 — Pulse Connect Secure 7.2 -2021-08-16
CVE-2021-21406 Command Injection vulnerability in the Setup Wizard — iTop 5.8 Medium2021-07-21
CVE-2021-22867 Unsafe configuration options in GitHub Pages leading to path traversal on GitHub Enterprise Server — GitHub Enterprise Server 6.5 -2021-07-14
CVE-2021-32529 QSAN XEVO, SANOS - Command Injection -1 — XEVO 9.8 Critical2021-07-07
CVE-2021-34809 Synology Download Station 命令注入漏洞 — Download Station 9.9 Critical2021-06-18
CVE-2021-32661 TechDocs object element script injection — backstage 6.8 Medium2021-06-03
CVE-2021-32660 TechDocs content sanitization bypass — backstage 6.8 Medium2021-06-03
CVE-2021-3515 PostgreSQL 操作系统命令注入漏洞 — pglogical 6.7 -2021-06-01
CVE-2021-22899 Pulse Secure Pulse Connect Secure 命令注入漏洞 — Pulse Connect Secure 9.9 -2021-05-27

Vulnerabilities classified as CWE-77 (在命令中使用的特殊元素转义处理不恰当(命令注入)) represent 1153 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.