Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2675

2675 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-1244 Emacs: shell injection vulnerability in gnu emacs via custom "man" uri scheme 8.8 High2025-02-12
CVE-2024-40584 Fortinet多款产品 操作系统命令注入漏洞 — FortiAnalyzer 6.8 High2025-02-11
CVE-2024-50567 Fortinet FortiWeb 操作系统命令注入漏洞 — FortiWeb 6.8 High2025-02-11
CVE-2024-50569 Fortinet FortiWeb 操作系统命令注入漏洞 — FortiWeb 6.3 Medium2025-02-11
CVE-2024-47908 Ivanti CSA 操作系统命令注入漏洞 — Cloud Services Application 9.1 Critical2025-02-11
CVE-2024-8684 OS Command Injection vulnerability in Revolution Pi — Revolution Pi 8.3 High2025-02-10
CVE-2025-24366 Insufficient sanitization of user provided rsync command in SFTPGo — sftpgo 7.5 High2025-02-07
CVE-2024-51450 IBM Security Verify Directory Command Execution — Security Verify Directory 9.1 Critical2025-02-06
CVE-2025-20029 BIG-IP iControl REST and tmsh vulnerability — BIG-IP 8.8 High2025-02-05
CVE-2025-24971 OS Command Injection endpoint '/upload/init' parameter 'filename' (RCE) in DumpDrop — DumbDrop 9.8 -2025-02-04
CVE-2024-23690 EOL Netgear FVS336v3 Telnet Configuration Backup Command Injection — FVS336Gv3 7.2 High2025-02-04
CVE-2024-40891 Zyxel VMG4325-B10A 操作系统命令注入漏洞 — VMG4325-B10A firmware 8.8 High2025-02-04
CVE-2024-40890 Zyxel VMG4325-B10A 操作系统命令注入漏洞 — VMG4325-B10A firmware 8.8 High2025-02-04
CVE-2025-0680 New Rock Technologies Cloud Connected Devices has a Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability. — OM500 IP-PBX 9.8 Critical2025-01-30
CVE-2025-20061 mySCADA myPRO Manager OS Command Injection — myPRO Manager 9.8 Critical2025-01-29
CVE-2025-20014 mySCADA myPRO Manager OS Command Injection — myPRO Manager 9.8 Critical2025-01-29
CVE-2025-0798 MicroWorld eScan Antivirus Quarantine rtscanner os command injection — eScan Antivirus 8.1 High2025-01-29
CVE-2025-24480 FactoryTalk® View Machine Editon - Remote Code Execution — FactoryTalk® View Machine Edition 9.8 -2025-01-28
CVE-2025-22604 Cacti has Authenticated RCE via multi-line SNMP responses — cacti 9.1 Critical2025-01-27
CVE-2025-22606 Coolify Command Injection Vulnerability in Project Name — coolify 8.8 -2025-01-24
CVE-2025-22605 Coolify OS Command Injection Vulnerability in SSH Command Generation — coolify 9.9 -2025-01-24
CVE-2025-23237 I-O Data Device UD-LT2 操作系统命令注入漏洞 — UD-LT2 7.8 -2025-01-22
CVE-2025-20617 I-O Data Device UD-LT2 操作系统命令注入漏洞 — UD-LT2 6.7 -2025-01-22
CVE-2024-13502 A command injection in the NTC2218, NTC2250, NTC2299 modems' web interfaces allows to exeucte arbitrary shell commands. — NTC2218, NTC2250, NTC2299 7.2 -2025-01-17
CVE-2025-0457 NetVision Information airPASS - OS Command Injection — airPASS 8.8 High2025-01-16
CVE-2025-0356 NEC Aterm WX1500HP 操作系统命令注入漏洞 — WX1500HP 7.2 High2025-01-15
CVE-2024-26012 Fortinet FortiAP 操作系统命令注入漏洞 — FortiAP-S 6.3 Medium2025-01-14
CVE-2024-48890 Fortinet FortiSOAR 操作系统命令注入漏洞 — FortiSOAR 6.3 Medium2025-01-14
CVE-2024-40587 Fortinet FortiVoice 操作系统命令注入漏洞 — FortiVoice 6.3 Medium2025-01-14
CVE-2024-27778 Fortinet FortiSandbox 操作系统命令注入漏洞 — FortiSandbox 8.3 High2025-01-14

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2675 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.