CWE-78 OS命令中使用的特殊元素转义处理不恰当(OS命令注入) 类弱点 2682 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2024-49281 | WordPress plugin Click to Chat 跨站脚本漏洞 — Click to Chat – WP Support All-in-One Floating Widget | 6.5 | Medium | 2024-10-17 |
| CVE-2005-10003 | Xcomic 操作系统命令注入漏洞 — Xcomic | 5.6 | Medium | 2024-10-17 |
| CVE-2024-6333 | Xerox多款产品 安全漏洞 — AltaLink® B8045 / B8055 / B8065 / B8075 / B8090 | C8030 / C8035 / C8045 / C8055 / C807 | 7.2 | High | 2024-10-17 |
| CVE-2024-20461 | Cisco ATA 190 操作系统命令注入漏洞 — Cisco Analog Telephone Adaptor (ATA) Software | 6.0 | Medium | 2024-10-16 |
| CVE-2024-20459 | Cisco ATA 190 操作系统命令注入漏洞 — Cisco Analog Telephone Adaptor (ATA) Software | 6.5 | Medium | 2024-10-16 |
| CVE-2024-20458 | Cisco ATA 190 操作系统命令注入漏洞 — Cisco Analog Telephone Adaptor (ATA) Software | 8.2 | High | 2024-10-16 |
| CVE-2024-22033 | openSUSE Leap 操作系统命令注入漏洞 — SUSE Package Hub 15 SP5 | 6.3 | Medium | 2024-10-16 |
| CVE-2024-9977 | MitraStar GPT-2541GNAC 操作系统命令注入漏洞 — GPT-2541GNAC | 4.7 | Medium | 2024-10-15 |
| CVE-2024-9139 | MOXA Service 安全漏洞 — EDR-8010 Series | 7.2 | High | 2024-10-14 |
| CVE-2024-9916 | UTCMS 操作系统命令注入漏洞 — UTCMS | 7.3 | High | 2024-10-13 |
| CVE-2024-9464 | Palo Alto Networks Expedition 安全漏洞 — Expedition | 9.9AI | CriticalAI | 2024-10-09 |
| CVE-2024-9463 | Palo Alto Networks Expedition 安全漏洞 — Expedition | 10.0AI | CriticalAI | 2024-10-09 |
| CVE-2024-45720 | Apache Subversion 操作系统命令注入漏洞 — Apache Subversion | 8.2 | High | 2024-10-09 |
| CVE-2024-21532 | ggit 安全漏洞 — ggit | 7.3 | High | 2024-10-08 |
| CVE-2024-8926 | PHP 安全漏洞 — PHP | 8.1 | High | 2024-10-08 |
| CVE-2024-45252 | Elsight Halo 操作系统命令注入漏洞 — Halo version 11.7.1.5 | 9.8 | Critical | 2024-10-06 |
| CVE-2024-45251 | Elsight Halo 安全漏洞 — Halo version 11.7.1.5 | 9.8 | Critical | 2024-10-06 |
| CVE-2024-9054 | Microchip TimeProvider 4100 安全漏洞 — TimeProvider 4100 | 8.8 | - | 2024-10-04 |
| CVE-2024-9441 | Nortek Control Linear eMerge E3-Series 安全漏洞 — eMerge e3-Series | 9.8 | Critical | 2024-10-02 |
| CVE-2024-47608 | Logicytics 操作系统命令注入漏洞 — Logicytics | 9.8 | - | 2024-10-01 |
| CVE-2024-21531 | git-shallow-clone 安全漏洞 — git-shallow-clone | 5.3 | Medium | 2024-10-01 |
| CVE-2024-23924 | Alpine Halo9安全漏洞 — Halo9 | 6.8 | Medium | 2024-09-28 |
| CVE-2024-23961 | Alpine Halo9 安全漏洞 — Halo9 | 6.8 | Medium | 2024-09-28 |
| CVE-2024-9166 | Atelmo Atemio AM 520 HD Full HD Satellite Receiver 操作系统命令注入漏洞 — Atemio AM 520 HD Full HD Satellite Receiver | 8.8AI | HighAI | 2024-09-26 |
| CVE-2024-9076 | DesDev DedeCMS 安全漏洞 — DedeCMS | 4.7 | Medium | 2024-09-22 |
| CVE-2024-9004 | D-Link DAR-7000 操作系统命令注入漏洞 — DAR-7000 | 6.3 | Medium | 2024-09-19 |
| CVE-2024-9001 | TOTOLINK T10 安全漏洞 — T10 | 6.3 | Medium | 2024-09-19 |
| CVE-2024-8957 | PTZOptics PT30X-SDI/NDI-xx 安全漏洞 — PT30X-SDI | 7.2 | High | 2024-09-17 |
| CVE-2024-45698 | D-Link DIR-X4860 操作系统命令注入漏洞 — DIR-X4860 A1 | 9.8 | Critical | 2024-09-16 |
| CVE-2024-8869 | TOTOLINK A720R 操作系统命令注入漏洞 — A720R | 5.0 | Medium | 2024-09-15 |
CWE-78(OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) 是常见的弱点类别,本平台收录该类弱点关联的 2682 条 CVE 漏洞。