CWE-78
High likelihoodImproper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
5,967 vulnerabilities with CWE-78
CVE-2024-57019
HIGH
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
CVSS 8.8
CVE-2024-57018
HIGH
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
CVSS 8.8
CVE-2024-57017
HIGH
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
CVSS 8.8
CVE-2024-57016
HIGH
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
CVSS 8.8
CVE-2024-57015
HIGH
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
CVSS 8.8
CVE-2024-57014
HIGH
TOTOLINK X5000R V9.1.0cu - Command Injection
CVSS 8.8
CVE-2024-57013
HIGH
TOTOLINK X5000R V9.1.0cu - Command Injection
CVSS 8.8
CVE-2024-57012
HIGH
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
CVSS 8.8
CVE-2024-57011
HIGH
TOTOLINK X5000R V9.1.0cu.2350_B20230313 - Command Injection
CVSS 8.8
CVE-2024-56497
MEDIUM
Fortinet FortiMail <7.2.4 - Command Injection
CVSS 6.7
CVE-2024-50566
HIGH
FortiManager 7.2.1-7.2.8 and FortiManager Cloud 7.2.2-7.2.7 - Authenticated OS Command Injection via FGFM Request
CVSS 7.2
CVE-2024-48890
MEDIUM
FortiSOAR IMAP Connector < 3.5.8 - Authenticated OS Command Injection via Crafted Playbook
CVSS 6.6
CVE-2024-40587
MEDIUM
Fortinet FortiVoice <7.0.4 - Command Injection
CVSS 6.7
CVE-2024-27778
HIGH
Fortinet FortiSandbox <4.4.4 - Command Injection
CVSS 8.8
CVE-2024-26012
MEDIUM
FortiAP 6.4-7.2.3/7.4.0-7.4.2, FortiAP-S 6.2-6.4.9, FortiAP-W2 6.4-7.2.3/7.4.0-7.4.2 - OS Command Injection via CLI
CVSS 6.7
CVE-2024-12847
CRITICAL
NETGEAR DGN1000 < 1.1.00.48 - Unauthenticated OS Command Injection via setup.cgi
CVSS 9.8
CVE-2024-57687
CRITICAL
PHPGurukul Land Record System 1.0 - OS Command Injection via Cookie GET Parameter
CVSS 9.8
CVE-2024-43657
HIGH
Iocharger AC <24120701 - Command Injection
CVSS 8.8
CVE-2024-43656
HIGH
Iocharger AC model chargers <24120701 - Command Injection
CVSS 8.8
CVE-2024-43655
CRITICAL
Iocharger AC <24120701 - Command Injection
CVE-2024-43654
HIGH
Iocharger AC <25010801 - Command Injection
CVSS 8.8
CVE-2024-43653
HIGH
Iocharger AC <24120701 - Command Injection
CVSS 8.8
CVE-2024-43652
HIGH
Iocharger AC <24120701 - Command Injection
CVSS 8.8
CVE-2024-43651
CRITICAL
Iocharger AC <241207101 - Command Injection
CVE-2024-43650
CRITICAL
Iocharger AC <24120701 - Command Injection
Details
Vulnerabilities
5,967
Exploit Likelihood
High