CWE-77 (在命令中使用的特殊元素转义处理不恰当(命令注入)) — Vulnerability Class 1149

1149 vulnerabilities classified as CWE-77 (在命令中使用的特殊元素转义处理不恰当(命令注入)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2019-1779	Cisco FXOS and NX-OS Software Command Injection Vulnerability — Cisco NX-OS Software	6.7	-	2019-05-15
CVE-2019-1735	Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1735) — Cisco NX-OS Software	7.8	-	2019-05-15
CVE-2019-6579	Siemens Spectrum Power 权限许可和访问控制问题漏洞 — Spectrum Power™ 4	9.8	-	2019-04-17
CVE-2019-5424	Ubiquiti Networks EdgeSwitch X 命令操作系统命令注入漏洞 — EdgeMAX	8.8	-	2019-04-10
CVE-2019-6552	Advantech WebAccess/SCADA 命令操作系统命令注入漏洞 — WebAccess/SCADA	9.8	-	2019-04-05
CVE-2019-5420	Ruby on Rails 安全特征问题漏洞 — https://github.com/rails/rails	9.8	-	2019-03-27
CVE-2019-5414	kill-port 操作系统命令注入漏洞 — kill-port	8.1	-	2019-03-17
CVE-2019-1610	Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1610) — Nexus 3500 Platform Switches	6.7	-	2019-03-11
CVE-2019-1611	Cisco FXOS and NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1611) — Firepower 4100 Series Next-Generation Firewalls	6.7	-	2019-03-11
CVE-2019-1612	Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1612) — Nexus 3000 Series Switches	6.7	-	2019-03-11
CVE-2019-1613	Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1613) — MDS 9000 Series Multilayer Switches	6.7	-	2019-03-11
CVE-2019-1614	Cisco NX-OS Software NX-API Command Injection Vulnerability — MDS 9000 Series Multilayer Switches	8.8	-	2019-03-11
CVE-2019-1606	Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1606) — Nexus 9000 Series Switches in Standalone NX-OS Mode	7.8	-	2019-03-08
CVE-2019-1607	Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1607) — Nexus 7000 and 7700 Series Switches	6.7	-	2019-03-08
CVE-2019-1608	Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1608) — MDS 9000 Series Multilayer Switches	6.7	-	2019-03-08
CVE-2019-1609	Cisco NX-OS Software CLI Command Injection Vulnerability (CVE-2019-1609) — MDS 9000 Series Multilayer Switches	6.7	-	2019-03-08
CVE-2019-3913	LabKey Server 安全漏洞 — LabKey Server Community Edition	6.5	-	2019-01-30
CVE-2018-19015	Omron CX-Supervisor 命令注入漏洞 — CX-Supervisor	7.3	-	2019-01-28
CVE-2018-19013	Omron CX-Supervisor 命令注入漏洞 — CX-Supervisor	5.0	-	2019-01-22
CVE-2018-5403	Imperva SecureSphere PWS组件授权问题漏洞 — SecureSphere	8.1	-	2019-01-10
CVE-2018-5412	Imperva SecureSphere 权限许可和访问控制问题漏洞 — SecureSphere	7.8	-	2019-01-10
CVE-2018-16461	libnmapp package 命令注入漏洞 — libnmap	9.8	-	2018-10-30
CVE-2018-16462	apex-publish-static-files npm 命令注入漏洞 — apex-publish-static-files	9.8	-	2018-10-30
CVE-2018-14649	Red Hat Ceph Storage 存在命令注入漏洞 — ceph-iscsi-cli	9.8	-	2018-10-09
CVE-2018-0424	Cisco RV110W, RV130W, and RV215W Routers Management Interface Command Injection Vulnerability — Cisco RV130W Wireless-N Multifunction VPN Router Firmware	8.8	-	2018-10-05
CVE-2018-0430	Cisco Integrated Management Controller Command Injection Vulnerability — Cisco Unified Computing System E-Series Software (UCSE)	8.8	-	2018-10-05
CVE-2018-0431	Cisco Integrated Management Controller Command Injection Vulnerability — Cisco Unified Computing System E-Series Software (UCSE)	8.8	-	2018-10-05
CVE-2018-0433	Cisco SD-WAN Solution Command Injection Vulnerability — Cisco SD-WAN Solution	7.8	-	2018-10-05
CVE-2018-0454	Cisco Cloud Services Platform 2100 Command Injection Vulnerability — Cisco Cloud Services Platform 2100	8.8	-	2018-10-05
CVE-2018-0477	Cisco IOS XE Software Command Injection Vulnerabilities — Cisco IOS XE Software	6.7	-	2018-10-05

Vulnerabilities classified as CWE-77 (在命令中使用的特殊元素转义处理不恰当(命令注入)) represent 1149 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-77 (在命令中使用的特殊元素转义处理不恰当(命令注入)) — Vulnerability Class 1149