Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2675

2675 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-12985 Overtek OT-E801G passwd os command injection — OT-E801G 6.3 Medium2024-12-27
CVE-2024-53256 Rizin has a command injection via RzBinInfo bclass due legacy code — rizin 7.8 High2024-12-23
CVE-2024-54082 Sharp SH-54C 操作系统命令注入漏洞 — home 5G HR02 7.2 -2024-12-23
CVE-2024-45721 Sharp SH-52B、SH-54C和HR02 操作系统命令注入漏洞 — home 5G HR02 7.2 -2024-12-23
CVE-2020-13712 MGOS Command Injection — MGOS 9.8 -2024-12-20
CVE-2024-28767 IBM Security Directory Integrator command execution — Security Directory Integrator 6.8 Medium2024-12-20
CVE-2024-12829 Arista NG Firewall ExecManagerImpl Command Injection Remote Code Execution Vulnerability — NG Firewall 8.8 -2024-12-20
CVE-2021-26115 Avfirewalls FortiWAN 操作系统命令注入漏洞 — FortiWAN 7.6 High2024-12-19
CVE-2024-12686 Command Injection vulnerability in Remote Support(RS) & Privilege Remote Access (PRA) — Remote Support(RS) & Privileged Remote Access(PRA) 6.6 Medium2024-12-18
CVE-2024-48889 Fortinet FortiManager 操作系统命令注入漏洞 — FortiManager 7.2 High2024-12-18
CVE-2024-53688 FXC AE1021和FXC AE1021PE 操作系统命令注入漏洞 — AE1021 7.2 High2024-12-18
CVE-2024-11858 Radare2: command injection via pebble application files in radare2 8.6 High2024-12-15
CVE-2024-52058 Potential arbitrary command execution in System Designer while parsing malicious HTTP/REST requests — Connext Professional 8.8 -2024-12-13
CVE-2024-28138 OS Command Injection — Scan2Net 9.8 -2024-12-10
CVE-2024-12358 WeiYe-Jing datax-web add os command injection — datax-web 6.3 Medium2024-12-09
CVE-2024-47115 IBM AIX command execution — AIX 7.8 High2024-12-07
CVE-2024-52320 Planet Technology Planet WGS-804HPT Command Injection — Planet WGS-804HPT 9.8 Critical2024-12-06
CVE-2024-48863 License Center — License Center 8.8 -2024-12-06
CVE-2024-50393 QTS, QuTS hero — QTS 7.2 -2024-12-06
CVE-2024-47133 I-O Data Device UD-LT1和I-O Data Device UD-LT1/EX 安全漏洞 — UD-LT1 7.2 -2024-12-05
CVE-2024-51465 IBM App Connect Enterprise Certified Container command execution — App Connect Enterprise Certified Container 8.8 High2024-12-04
CVE-2024-9200 Zyxel VMG4005-B50A 安全漏洞 — VMG4005-B50A firmware 7.2 High2024-12-03
CVE-2024-53992 unzip-bot Allows Remote Code Execution (RCE) via archive extraction, password prompt, or video upload — unzip-bot 9.8 -2024-12-02
CVE-2024-49803 IBM Security Verify Access Appliance command execution — Security Verify Access 9.8 Critical2024-11-29
CVE-2024-11482 Trellix Enterprise Security Manager 安全漏洞 — Trellix Enterprise Security Manager (ESM) 9.8 Critical2024-11-29
CVE-2024-11983 Billion Electric router - OS Command Injection — M100 7.2 High2024-11-29
CVE-2024-9461 Total Upkeep <= 1.16.6 - Authenticated (Administrator+) Remote Code Execution via Backup Settings — Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid 7.2 High2024-11-26
CVE-2024-50377 Advantech EKI-6333AC-2G和Advantech EKI-6333AC-2GD 安全漏洞 — EKI-6333AC-2G 6.5 Medium2024-11-26
CVE-2024-50376 Advantech EKI-6333AC-2G和Advantech EKI-6333AC-2GD 安全漏洞 — EKI-6333AC-2G 7.3 High2024-11-26
CVE-2024-50375 Advantech EKI-6333AC-2G和Advantech EKI-6333AC-2GD 安全漏洞 — EKI-6333AC-2G 9.8 Critical2024-11-26

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2675 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.