Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) — Vulnerability Class 2682

2682 vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-8281 Lenovo XClarity Controller 安全漏洞 — HX5530 Appliance (ThinkAgile) XCC 7.2 High2024-09-13
CVE-2024-8280 Lenovo XClarity Controller 安全漏洞 — HX5530 Appliance (ThinkAgile) XCC 7.2 High2024-09-13
CVE-2024-8279 Lenovo XClarity Controller 安全漏洞 — HX5530 Appliance (ThinkAgile) XCC 7.2 High2024-09-13
CVE-2024-8278 Lenovo XClarity Controller 安全漏洞 — HX5530 Appliance (ThinkAgile) XCC 7.2 High2024-09-13
CVE-2024-20483 Cisco IOS XR PON Controller Command Injection Vulnerabilities — Cisco IOS XR Software 7.2 High2024-09-11
CVE-2024-20398 Cisco IOS XR Software Local Privilege Escalation Vulnerability — Cisco IOS XR Software 8.8 High2024-09-11
CVE-2024-8686 PAN-OS: Command Injection Vulnerability — PAN-OS 7.2AIHighAI2024-09-11
CVE-2024-6091 Shell Command Denylist Bypass in significant-gravitas/autogpt — significant-gravitas/autogpt 9.8AICriticalAI2024-09-11
CVE-2024-8190 Ivanti Cloud Services Appliance 安全漏洞 — CSA (Cloud Services Appliance) 7.2 High2024-09-10
CVE-2024-8504 VICIdial Authenticated Remote Code Execution — VICIdial 8.8AIHighAI2024-09-10
CVE-2024-43387 Phoenix Contact: Access files due to improper neutralization of special elements in MGUARD devices — FL MGUARD 2102 8.8 High2024-09-10
CVE-2024-43386 Phoenix Contact: OS command execution through EMAIL_NOTIFICATION.TO in mGuard devices. — FL MGUARD 2102 8.8 High2024-09-10
CVE-2024-43385 Phoenix Contact: OS command execution through PROXY_HTTP_PORT in mGuard devices — FL MGUARD 2102 8.8 High2024-09-10
CVE-2024-7699 Phoenix Contact: OS command execution in MGUARD products — FL MGUARD 2102 8.8 High2024-09-10
CVE-2024-6342 Zyxel NAS542和NAS326 操作系统命令注入漏洞 — NAS326 firmware 9.8 Critical2024-09-10
CVE-2024-8574 TOTOLINK AC1200 T8 cstecgi.cgi setParentalRules os command injection — AC1200 T8 6.3 Medium2024-09-08
CVE-2024-21906 QTS, QuTS hero — QTS 4.7 Medium2024-09-06
CVE-2023-34979 QTS, QuTS hero — QTS 6.6 Medium2024-09-06
CVE-2023-34974 QTS, QuTS hero, QuTScloud, QVR, QES — QTS 8.8 High2024-09-06
CVE-2023-39300 QTS — QTS 7.2 High2024-09-06
CVE-2024-21898 QTS, QuTS hero — QTS 8.8 High2024-09-06
CVE-2024-7591 Improper Input Validation vulnerability in Progress LoadMaster allows OS Command Injection — LoadMaster 10.0 Critical2024-09-05
CVE-2024-20469 Cisco Identity Services Engine Command Injection Vulnerability — Cisco Identity Services Engine Software 6.0 Medium2024-09-04
CVE-2024-43405 Nuclei Template Signature Verification Bypass — nuclei 7.4 High2024-09-04
CVE-2024-43402 Rust OS Command Injection/Argument Injection vulnerability — rust 8.2 High2024-09-04
CVE-2024-7261 Zyxel多款产品 操作系统命令注入漏洞 — NWA1123ACv3 firmware 9.8 Critical2024-09-03
CVE-2024-42060 Zyxel多款产品 操作系统命令注入漏洞 — ATP series firmware 7.2 High2024-09-03
CVE-2024-42059 Zyxel多款产品 安全漏洞 — ATP series firmware 7.2 High2024-09-03
CVE-2024-42057 Zyxel多款产品 操作系统命令注入漏洞 — ATP series firmware 8.1 High2024-09-03
CVE-2024-7203 Zyxel ATP series firmware和Zyxel USG FLEX series firmware 操作系统命令注入漏洞 — ATP series firmware 7.2 High2024-09-03

Vulnerabilities classified as CWE-78 (OS命令中使用的特殊元素转义处理不恰当(OS命令注入)) represent 2682 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.