CWE-77— Command Injection
The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.— MITRE CWE catalog
3,885 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-77page 40 of 78
- CVE-2023-49133HIGHCVSS 8.1EG 8.12024-04-09
A command execution vulnerability exists in the tddpd enable_test_mode functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) v5.1.0 Build 20220926 and Tp-Link N300 Wireless Access Point (EAP115 V4) v5.0.4 Build …
- CVE-2023-49134HIGHCVSS 8.1EG 8.12024-04-09
A command execution vulnerability exists in the tddpd enable_test_mode functionality of Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) v5.1.0 Build 20220926 and Tp-Link N300 Wireless Access Point (EAP115 V4) v5.0.4 Build …
- CVE-2023-49210CRITICALCVSS 9.8EG 9.82023-11-23
The openssl (aka node-openssl) NPM package through 2.0.0 was characterized as "a nonsense wrapper with no real purpose" by its author, and accepts an opts argument that contains a verb field (used for command execution). NOTE: This vulnera…
- CVE-2023-49213HIGHCVSS 8.8EG 8.82023-11-23
The API endpoints in Ironman PowerShell Universal 3.0.0 through 4.2.0 allow remote attackers to execute arbitrary commands via crafted HTTP requests if a param block is used, due to invalid sanitization of input strings. The fixed versions…
- CVE-2023-49226HIGHCVSS 7.2EG 7.22023-12-25
An issue was discovered in Peplink Balance Two before 8.4.0. Command injection in the traceroute feature of the administration console allows users with admin privileges to execute arbitrary commands as root.
- CVE-2023-49237CRITICALCVSS 9.8EG 9.82024-01-09
An issue was discovered on TRENDnet TV-IP1314PI 5.5.3 200714 devices. Command injection can occur because the system function is used by davinci to unpack language packs without strict filtering of URL strings.
- CVE-2023-49428CRITICALCVSS 9.8EG 9.82023-12-07
Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName.
- CVE-2023-49431CRITICALCVSS 9.8EG 9.82023-12-07
Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'mac' parameter at /goform/SetOnlineDevName.
- CVE-2023-49435CRITICALCVSS 9.8EG 9.82023-12-07
Tenda AX9 V22.03.01.46 is vulnerable to command injection.
- CVE-2023-49436CRITICALCVSS 9.8EG 9.82023-12-07
Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'list' parameter at /goform/SetNetControlList.
- CVE-2023-49437CRITICALCVSS 9.8EG 9.82023-12-07
Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the 'list' parameter at /goform/SetNetControlList.
- CVE-2023-49565HIGHCVSS 8.4EG 8.42025-09-18
The cbis_manager Podman container is vulnerable to remote command execution via the /api/plugins endpoint. Improper sanitization of the HTTP Headers X-FILENAME, X-PAGE, and X-FIELD allows for command injection. These headers are directly u…
- CVE-2023-4958MEDIUMCVSS 6.1EG 6.12023-12-12
In Red Hat Advanced Cluster Security (RHACS), it was found that some security related HTTP headers were missing, allowing an attacker to exploit this with a clickjacking attack. An attacker could exploit this by convincing a valid RHACS us…
- CVE-2023-49587MEDIUMCVSS 6.4EG 6.42023-12-12
SAP Solution Manager - version 720, allows an authorized attacker to execute certain deprecated function modules which can read or modify data of same or other component without user interaction over the network.
- CVE-2023-49716MEDIUMCVSS 6.9EG 6.92024-02-09
In Emerson Rosemount GC370XA, GC700XA, and GC1500XA products, an authenticated user with network access could run arbitrary commands from a remote computer.
- CVE-2023-49898HIGHCVSS 7.2EG 7.22023-12-15
In streampark, there is a project module that integrates Maven's compilation capability. However, there is no check on the compilation parameters of Maven. allowing attackers to insert commands for remote command execution, The prerequisit…
- CVE-2023-49959CRITICALCVSS 9.8EG 9.82024-02-26
In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the gedtupdater service of the firmware allows remote attackers to execute arbitrary system commands with root privileges via a crafted filename paramete…
- CVE-2023-50089CRITICALCVSS 9.8EG 9.82023-12-15
A Command Injection vulnerability exists in NETGEAR WNR2000v4 version 1.0.0.70. When using HTTP for SOAP authentication, command execution occurs during the process after successful authentication.
- CVE-2023-50274HIGHCVSS 7.8EG 7.82024-01-23
HPE OneView may allow command injection with local privilege escalation.
- CVE-2023-50445HIGHCVSS 7.8EG 7.82023-12-28
Shell Injection vulnerability GL.iNet A1300 v4.4.6, AX1800 v4.4.6, AXT1800 v4.4.6, MT3000 v4.4.6, MT2500 v4.4.6, MT6000 v4.5.0, MT1300 v4.3.7, MT300N-V2 v4.3.7, AR750S v4.3.7, AR750 v4.3.7, AR300M v4.3.7, and B1300 v4.3.7., allows local at…
- CVE-2023-50917CRITICALCVSS 9.8EG 9.82023-12-15
MajorDoMo (aka Major Domestic Module) before 0662e5e allows command execution via thumb.php shell metacharacters. NOTE: this is unrelated to the Majordomo mailing-list manager.
- CVE-2023-50983CRITICALCVSS 9.8EG 9.82023-12-20
Tenda i29 v1.0 V1.0.0.5 was discovered to contain a command injection vulnerability via the sysScheduleRebootSet function.
- CVE-2023-50989CRITICALCVSS 9.8EG 9.82023-12-20
Tenda i29 v1.0 V1.0.0.5 was discovered to contain a command injection vulnerability via the pingSet function.
- CVE-2023-51014CRITICALCVSS 9.8EG 9.82023-12-22
TOTOLINK EX1800T V9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the lanSecDns parameter’ of the setLanConfig interface of the cstecgi .cgi
- CVE-2023-51016CRITICALCVSS 9.8EG 9.82023-12-22
TOTOlink EX1800T v9.1.0cu.2112_B20220316 is vulnerable to unauthorized arbitrary command execution in the setRebootScheCfg interface of the cstecgi .cgi.
- CVE-2023-51025CRITICALCVSS 9.8EG 9.82023-12-22
TOTOlink EX1800T V9.1.0cu.2112_B20220316 is vulnerable to an unauthorized arbitrary command execution in the ‘admuser’ parameter of the setPasswordCfg interface of the cstecgi .cgi.
- CVE-2023-51126CRITICALCVSS 9.8EG 9.82024-01-10
Command injection vulnerability in /usr/www/res.php in FLIR AX8 up to 1.46.16 allows attackers to run arbitrary commands via the value parameter. NOTE: The vendor has stated that with the introduction of firmware version 1.49.16 (Jan 2023)…
- CVE-2023-51295MEDIUMCVSS 6.5EG 6.52025-05-08
PHPJabbers Event Booking Calendar v4.0 is vulnerable to Multiple HTML Injection in the "name, plugin_sms_api_key, plugin_sms_country_code, title, plugin_sms_api_key, title" parameters.
- CVE-2023-51664CRITICALCVSS 9.8EG 7.32023-12-27
tj-actions/changed-files is a Github action to retrieve all files and directories. Prior to 41.0.0, the `tj-actions/changed-files` workflow allows for command injection in changed filenames, allowing an attacker to execute arbitrary code a…
- CVE-2023-51707CRITICALCVSS 9.8EG 9.82023-12-22
MotionPro in Array ArrayOS AG before 9.4.0.505 on AG and vxAG allows remote command execution via crafted packets. AG and vxAG 9.3.0.259.x are unaffected.
- CVE-2023-51812CRITICALCVSS 9.8EG 9.82024-01-04
Tenda AX3 v16.03.12.11 was discovered to contain a remote code execution (RCE) vulnerability via the list parameter at /goform/SetNetControlList.
- CVE-2023-51833HIGHCVSS 8.1EG 8.12024-01-25
A command injection issue in TRENDnet TEW-411BRPplus v.2.07_eu that allows a local attacker to execute arbitrary code via the data1 parameter in the debug.cgi page.
- CVE-2023-51835MEDIUMCVSS 6.8EG 6.82024-02-29
An issue in TRENDnet TEW-822DRE v.1.03B02 allows a local attacker to execute arbitrary code via the parameters ipv4_ping in the /boafrm/formSystemCheck.
- CVE-2023-51887CRITICALCVSS 9.8EG 9.82024-01-24
Command Injection vulnerability in Mathtex v.1.05 and before allows a remote attacker to execute arbitrary code via crafted string in application URL.
- CVE-2023-51972CRITICALCVSS 9.8EG 9.82024-01-10
Tenda AX1803 v1.0.0.1 was discovered to contain a command injection vulnerability via the function fromAdvSetLanIp.
- CVE-2023-52027CRITICALCVSS 9.8EG 9.82024-01-11
TOTOlink A3700R v9.1.2u.5822_B20200513 was discovered to contain a remote command execution (RCE) vulnerability via the NTPSyncWithHost function.
- CVE-2023-52038CRITICALCVSS 9.8EG 9.82024-01-24
An issue discovered in TOTOLINK X6000R v9.4.0cu.852_B20230719 allows attackers to run arbitrary commands via the sub_415C80 function.
- CVE-2023-52039CRITICALCVSS 9.8EG 9.82024-01-24
An issue discovered in TOTOLINK X6000R v9.4.0cu.852_B20230719 allows attackers to run arbitrary commands via the sub_415AA4 function.
- CVE-2023-52040CRITICALCVSS 9.8EG 9.82024-01-24
An issue discovered in TOTOLINK X6000R v9.4.0cu.852_B20230719 allows attackers to run arbitrary commands via the sub_41284C function.
- CVE-2023-52042CRITICALCVSS 9.8EG 9.82024-01-16
An issue discovered in sub_4117F8 function in TOTOLINK X6000R V9.4.0cu.852_B20230719 allows attackers to run arbitrary commands via the 'lang' parameter.
- CVE-2023-52137HIGHCVSS 8.8EG 7.72023-12-29
The [`tj-actions/verify-changed-files`](https://github.com/tj-actions/verify-changed-files) action allows for command injection in changed filenames, allowing an attacker to execute arbitrary code and potentially leak secrets. The [`verify…
- CVE-2023-52291MEDIUMCVSS 4.7EG 4.72024-07-17
In streampark, the project module integrates Maven's compilation capabilities. The input parameter validation is not strict, allowing attackers to insert commands for remote command execution, The prerequisite for a successful attack is th…
- CVE-2023-52624HIGHCVSS 7.8EG 7.82024-03-26
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wake DMCUB before executing GPINT commands [Why] DMCUB can be in idle when we attempt to interface with the HW through the GPINT mailbox resulting in a …
- CVE-2023-5752LOWCVSS 3.3EG 5.52023-10-25
When installing a package from a Mercurial VCS URL (ie "pip install hg+...") with pip prior to v23.3, the specified Mercurial revision could be used to inject arbitrary configuration options to the "hg clone" call (ie "--config"). Cont…
- CVE-2023-5878CRITICALCVSS 9.4EG 9.12025-02-06
Honeywell OneWireless Wireless Device Manager (WDM) for the following versions R310.x, R320.x, R321.x, R322.1, R322.2, R323.x, R330.1 contains a command injection vulnerability. An attacker who is authenticated could use the firmware up…
- CVE-2023-6071HIGHCVSS 7.2EG 8.42023-11-30
An Improper Neutralization of Special Elements used in a command vulnerability in ESM prior to version 11.6.9 allows a remote administrator to execute arbitrary code as root on the ESM. This is possible as the input isn't correctly saniti…
- CVE-2023-6321HIGHCVSS 7.2EG 7.22024-05-15
A command injection vulnerability exists in the IOCTL that manages OTA updates. A specially crafted command can lead to command execution as the root user. An attacker can make authenticated requests to trigger this vulnerability.
- CVE-2023-6572HIGHCVSS 8.1EG 8.12023-12-14
Command Injection in GitHub repository gradio-app/gradio prior to main.
- CVE-2023-6634HIGHCVSS 8.1EG 9.02024-01-11
The LearnPress plugin for WordPress is vulnerable to Command Injection in all versions up to, and including, 4.2.5.7 via the get_content function. This is due to the plugin making use of the call_user_func function with user input. This ma…
- CVE-2023-6848CRITICALCVSS 9.8EG 7.32023-12-16
A vulnerability was found in kalcaddle kodbox up to 1.48. It has been declared as critical. Affected by this vulnerability is the function check of the file plugins/officeViewer/controller/libreOffice/index.class.php. The manipulation of t…
Map vulnerabilities like CWE-77 to your infrastructure
EchelonGraph correlates every CVE — across CWE-77 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →