CWE-78 OS命令中使用的特殊元素转义处理不恰当(OS命令注入) 类弱点 2682 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-3881 | eCharge Hardy Barth cPH2 操作系统命令注入漏洞 — cPH2 | 8.8AI | HighAI | 2025-05-22 |
| CVE-2025-48069 | ejson2env 操作系统命令注入漏洞 — ejson2env | 6.6 | Medium | 2025-05-21 |
| CVE-2025-5030 | KillWxapkg 安全漏洞 — KillWxapkg | 5.0 | Medium | 2025-05-21 |
| CVE-2025-27804 | eCharge Hardy Barth cPH2和eCharge Hardy Barth cPP2 安全漏洞 — cPH2 / cPP2 charging stations | 9.8AI | CriticalAI | 2025-05-21 |
| CVE-2025-48204 | TYPO3 安全漏洞 — ns backup extension | 6.8 | Medium | 2025-05-21 |
| CVE-2025-41225 | VMware vCenter Server 安全漏洞 — vCenter Server | 8.8 | High | 2025-05-20 |
| CVE-2025-32002 | I-O Data HDL-T 操作系统命令注入漏洞 — HDL-TC1 | 9.8 | Critical | 2025-05-15 |
| CVE-2025-47782 | motionEye 安全漏洞 — motioneye | 7.2AI | HighAI | 2025-05-14 |
| CVE-2025-24022 | iTop 操作系统命令注入漏洞 — iTop | 8.6 | High | 2025-05-14 |
| CVE-2025-43562 | Adobe ColdFusion 操作系统命令注入漏洞 — ColdFusion | 9.1 | Critical | 2025-05-13 |
| CVE-2025-40582 | Siemens SCALANCE LPE9403 操作系统命令注入漏洞 — SCALANCE LPE9403 | 7.8 | High | 2025-05-13 |
| CVE-2025-26389 | Siemens OZW672 操作系统命令注入漏洞 — OZW672 | 10.0 | Critical | 2025-05-13 |
| CVE-2025-20194 | Cisco IOS XE 操作系统命令注入漏洞 — Cisco IOS XE Software | 5.4 | Medium | 2025-05-07 |
| CVE-2025-20193 | Cisco IOS XE 操作系统命令注入漏洞 — Cisco IOS XE Software | 6.5 | Medium | 2025-05-07 |
| CVE-2025-20186 | Cisco IOS XE 操作系统命令注入漏洞 — Cisco IOS XE Software | 8.8 | High | 2025-05-07 |
| CVE-2025-32821 | SonicWALL SMA100 安全漏洞 — SMA100 | 7.2AI | HighAI | 2025-05-07 |
| CVE-2025-20213 | Cisco Catalyst SD-WAN Manager 操作系统命令注入漏洞 — Cisco Catalyst SD-WAN Manager | 5.5 | Medium | 2025-05-07 |
| CVE-2025-47203 | dropbear 安全漏洞 — Dropbear SSH | 4.5 | Medium | 2025-05-07 |
| CVE-2025-2605 | Honeywell MB-Secure 安全漏洞 — MB-Secure | 9.9 | Critical | 2025-05-02 |
| CVE-2024-6032 | Tesla Model S 操作系统命令注入漏洞 — Model S | 7.8AI | HighAI | 2025-04-30 |
| CVE-2025-24351 | Bosch Rexroth ctrlX OS 安全漏洞 — ctrlX OS - Device Admin | 8.8 | High | 2025-04-30 |
| CVE-2025-4032 | AWorld 命令注入漏洞 — AWorld | 5.0 | Medium | 2025-04-28 |
| CVE-2022-41871 | SEPPmail 安全漏洞 — SEPPmail | 6.0 | Medium | 2025-04-28 |
| CVE-2025-46272 | PLANET WGS-804HPT和PLANET WGS-4215-8T2S 操作系统命令注入漏洞 — WGS-804HPT-V2 | 9.1 | Critical | 2025-04-24 |
| CVE-2025-46271 | PLANET UNI-NMS-Lite 操作系统命令注入漏洞 — UNI-NMS-Lite | 9.1 | Critical | 2025-04-24 |
| CVE-2025-2773 | BEC Routers 操作系统命令注入漏洞 — Multiple Routers | 7.2 | - | 2025-04-23 |
| CVE-2025-43920 | GNU Mailman 安全漏洞 — Mailman | 5.4 | Medium | 2025-04-20 |
| CVE-2025-3816 | CicadasCMS 命令注入漏洞 — CicadasCMS | 4.7 | Medium | 2025-04-19 |
| CVE-2025-3729 | SourceCodester Web-based Pharmacy Product Management System 命令注入漏洞 — Web-based Pharmacy Product Management System | 7.3 | High | 2025-04-16 |
| CVE-2025-32778 | Web-Check 操作系统命令注入漏洞 — web-check | 9.8AI | CriticalAI | 2025-04-15 |
CWE-78(OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) 是常见的弱点类别,本平台收录该类弱点关联的 2682 条 CVE 漏洞。