CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2682

2682 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2023-39471	TP-Link TL-WR841N ated_tp Command Injection Remote Code Execution Vulnerability — TL-WR841N	8.8	-	2024-05-03
CVE-2023-38120	Adtran SR400ac ping Command Injection Remote Code Execution Vulnerability — SR400ac	8.8	-	2024-05-03
CVE-2023-35723	D-Link DIR-X3260 prog.cgi SOAPAction Command Injection Remote Code Execution Vulnerability — DIR-X3260	8.8	-	2024-05-03
CVE-2023-35722	NETGEAR RAX30 UPnP Command Injection Remote Code Execution Vulnerability — RAX30	8.8	-	2024-05-03
CVE-2023-34280	D-Link DIR-2150 SetSysEmailSettings EmailTo Command Injection Remote Code Execution Vulnerability — DIR-2150	8.0	-	2024-05-03
CVE-2023-34281	D-Link DIR-2150 GetFirmwareStatus Target Command Injection Remote Code Execution Vulnerability — DIR-2150	8.0	-	2024-05-03
CVE-2023-34279	D-Link DIR-2150 GetDeviceSettings Target Command Injection Remote Code Execution Vulnerability — DIR-2150	8.8	-	2024-05-03
CVE-2023-34278	D-Link DIR-2150 SetSysEmailSettings EmailFrom Command Injection Remote Code Execution Vulnerability — DIR-2150	8.0	-	2024-05-03
CVE-2023-34277	D-Link DIR-2150 SetSysEmailSettings AccountName Command Injection Remote Code Execution Vulnerability — DIR-2150	8.0	-	2024-05-03
CVE-2023-34276	D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution Vulnerability — DIR-2150	8.8	-	2024-05-03
CVE-2023-34275	D-Link DIR-2150 SetNTPServerSettings Command Injection Remote Code Execution Vulnerability — DIR-2150	8.0	-	2024-05-03
CVE-2023-32153	D-Link DIR-2640 EmailFrom Command Injection Remote Code Execution Vulnerability — DIR-2640	8.0	-	2024-05-03
CVE-2023-32151	D-Link DIR-2640 DestNetwork Command Injection Remote Code Execution Vulnerability — DIR-2640	8.0	-	2024-05-03
CVE-2023-32150	D-Link DIR-2640 PrefixLen Command Injection Remote Code Execution Vulnerability — DIR-2640	8.0	-	2024-05-03
CVE-2023-32147	D-Link DIR-2640 LocalIPAddress Command Injection Remote Code Execution Vulnerability — DIR-2640	8.0	-	2024-05-03
CVE-2023-27367	NETGEAR RAX30 libcms_cli Command Injection Remote Code Execution Vulnerability — RAX30	8.0	-	2024-05-03
CVE-2023-27356	NETGEAR RAX30 logCtrl Command Injection Remote Code Execution Vulnerability — RAX30	8.0	-	2024-05-03
CVE-2024-3196	MailCleaner SOAP Service dumpConfiguration os command injection — MailCleaner	6.7	Medium	2024-04-29
CVE-2024-3193	MailCleaner Admin Endpoints os command injection — MailCleaner	8.8	High	2024-04-29
CVE-2024-3191	MailCleaner Email os command injection — MailCleaner	9.8	Critical	2024-04-29
CVE-2024-4301	N-Reporter and N-Cloud from N-Partner - Os Command Injection — N-Reporter firmware	8.8	High	2024-04-29
CVE-2024-4299	HGiga iSherlock - Command Injection — iSherlock 4.5	7.2	High	2024-04-29
CVE-2024-4298	HGiga iSherlock - Command Injection — iSherlock 4.5	7.2	High	2024-04-29
CVE-2024-4255	Ruijie RG-UAC gre_edit_commit.php os command injection — RG-UAC	4.7	Medium	2024-04-27
CVE-2024-27124	QTS, QuTS hero, QuTScloud — QTS	7.5	High	2024-04-26
CVE-2024-0740	Eclipse Target Management <= 4.5.500 Command Injection — Eclipse Target Management	9.8	Critical	2024-04-26
CVE-2024-20295	Cisco Integrated Management Controller 操作系统命令注入漏洞 — Cisco Unified Computing System (Standalone)	8.8	High	2024-04-24
CVE-2024-20356	Cisco Integrated Management Controller 操作系统命令注入漏洞 — Cisco Unified Computing System (Standalone)	8.7	High	2024-04-24
CVE-2024-20358	Cisco Firepower Threat Defense和Adaptive Security Appliance 操作系统命令注入漏洞 — Cisco Secure Firewall Adaptive Security Appliance (ASA) Software	6.0	Medium	2024-04-24
CVE-2024-32477	Race condition when flushing input stream leads to permission prompt bypass — deno	7.7	High	2024-04-18

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2682 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2682