Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2678

2678 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-23779 Fortinet FortiWeb 操作系统命令注入漏洞 — FortiWeb 6.6 Medium2023-02-16
CVE-2022-30303 Fortinet FortiWeb 操作系统命令注入漏洞 — FortiWeb 8.6 High2023-02-16
CVE-2023-0830 EasyNAS backup.pl system os command injection — EasyNAS 6.3 Medium2023-02-14
CVE-2022-34447 Dell PowerPath Management Appliance 操作系统命令注入漏洞 — PowerPath Management Appliance 7.2 High2023-02-10
CVE-2022-46649 Sierra Wireless ALEOS 操作系统命令注入漏洞 — ALEOS 8.8 -2023-02-10
CVE-2022-43550 Jitsi 命令注入漏洞 — https://github.com/jitsi 8.1 -2023-02-09
CVE-2022-31249 [RANCHER] OS command injection in Rancher and Fleet — Rancher 7.5 High2023-02-07
CVE-2022-38547 ZyXEL ZyWALL USG 操作系统命令注入漏洞 — ZyWALL/USG series firmware 7.2 High2023-02-07
CVE-2022-43758 Rancher: Command injection in Git package — Rancher 7.6 High2023-02-07
CVE-2023-22643 libzypp-plugin-appdata: potential arbitrary code execution via shell injection due to `os.system` calls — SUSE Linux Enterprise Server for SAP 15-SP3 6.3 Medium2023-02-07
CVE-2022-25853 semver-tags 安全漏洞 — semver-tags 7.4 High2023-02-06
CVE-2022-25855 npm create-choo-app3 安全漏洞 — create-choo-app3 7.4 High2023-02-06
CVE-2023-23692 Dell PowerProtect Data Domain 操作系统命令注入漏洞 — Data Domain 8.8 High2023-02-01
CVE-2022-25906 is-http2 操作系统命令注入漏洞 — is-http2 7.4 High2023-02-01
CVE-2022-25916 mt7688-wiscan 安全漏洞 — mt7688-wiscan 7.4 High2023-02-01
CVE-2022-21129 nemo-appium 安全漏洞 — nemo-appium 7.4 High2023-01-31
CVE-2022-42484 FreshTomato 操作系统命令注入漏洞 — FreshTomato 9.8 -2023-01-30
CVE-2022-40969 Siretta QUARTZ-GOLD 操作系统命令注入漏洞 — QUARTZ-GOLD 8.8 -2023-01-26
CVE-2022-40220 Siretta QUARTZ-GOLD 操作系统命令注入漏洞 — QUARTZ-GOLD 8.8 -2023-01-26
CVE-2022-38066 Siretta QUARTZ-GOLD 操作系统命令注入漏洞 — QUARTZ-GOLD 8.8 -2023-01-26
CVE-2022-40222 Siretta QUARTZ-GOLD 操作系统命令注入漏洞 — QUARTZ-GOLD 9.8 -2023-01-26
CVE-2022-42490 Siretta QUARTZ-GOLD 操作系统命令注入漏洞 — QUARTZ-GOLD 8.8 -2023-01-26
CVE-2022-42491 Siretta QUARTZ-GOLD 操作系统命令注入漏洞 — QUARTZ-GOLD 9.8 -2023-01-26
CVE-2022-42492 Siretta QUARTZ-GOLD 操作系统命令注入漏洞 — QUARTZ-GOLD 9.8 -2023-01-26
CVE-2022-42493 Siretta QUARTZ-GOLD 操作系统命令注入漏洞 — QUARTZ-GOLD 9.8 -2023-01-26
CVE-2022-40719 D-Link DIR-2150 操作系统命令注入漏洞 — DIR-2150 8.8 -2023-01-26
CVE-2022-40720 D-Link DIR-2150 操作系统命令注入漏洞 — DIR-2150 8.8 -2023-01-26
CVE-2022-21810 smartctl 安全漏洞 — smartctl 7.4 High2023-01-25
CVE-2022-25962 Vagrant 安全漏洞 — vagrant.js 7.4 High2023-01-25
CVE-2022-29843 Western Digital My Cloud OS 5 devices Command Injection Vulnerability — My Cloud 6.2 Medium2023-01-25

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2678 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.