CWE-77
Command Injection
MITRENo catalog description on file. The MITRE CWE site has the canonical reference.
Recent CVEs
showing 50 of 52- CVE-2026-42850—EPSS 0%12 h ago
Kitty is a cross-platform GPU based terminal. In versions prior to 0.47.0, it is possible to inject commands within the subshell through kitty error. A special escape code will make kitty return an error, this error is not escaped and will
- CVE-2022-40765Medium· 6.8KEVEPSS 3%15 h ago
Mitel MiVoice Connect Command Injection Vulnerability
- CVE-2026-22719High· 8.1KEVEPSS 2%15 h ago
Broadcom VMware Aria Operations Command Injection Vulnerability
- CVE-2023-1389High· 8.8KEVEXPLOITEPSS 93%15 h ago
TP-Link Archer AX-21 Command Injection Vulnerability
- CVE-2016-6367High· 7.8KEVEXPLOITEPSS 19%15 h ago
Cisco Adaptive Security Appliance (ASA) CLI Remote Code Execution Vulnerability
- CVE-2019-0541High· 8.8KEVEXPLOITEPSS 87%15 h ago
Microsoft MSHTML Remote Code Execution Vulnerability
- CVE-2023-33538High· 8.8KEVEPSS 90%15 h ago
TP-Link Multiple Routers Command Injection Vulnerability
- CVE-2023-20887Critical· 9.8KEVEXPLOITEPSS 94%15 h ago
Vmware Aria Operations for Networks Command Injection Vulnerability
- CVE-2024-9380High· 7.2KEVEPSS 88%15 h ago
Ivanti Cloud Services Appliance (CSA) OS Command Injection Vulnerability
- CVE-2016-1555Critical· 9.8KEVEXPLOITEPSS 94%15 h ago
NETGEAR Multiple WAP Devices Command Injection Vulnerability
- CVE-2015-2051High· 8.8KEVEXPLOITEPSS 93%15 h ago
D-Link DIR-645 Router Remote Code Execution Vulnerability
- CVE-2024-21887Critical· 9.1KEVEXPLOITEPSS 94%15 h ago
Ivanti Connect Secure and Policy Secure Command Injection Vulnerability
- CVE-2025-29635High· 7.2KEVEPSS 20%15 h ago
D-Link DIR-823X Command Injection Vulnerability
- CVE-2016-10033Critical· 9.8KEVEXPLOITEPSS 94%15 h ago
PHPMailer Command Injection Vulnerability
- CVE-2025-10035Critical· 10.0KEVEPSS 62%15 h ago
Fortra GoAnywhere MFT Deserialization of Untrusted Data Vulnerability
- CVE-2018-19949Critical· 9.8KEVEPSS 44%15 h ago
QNAP NAS File Station Command Injection Vulnerability
- CVE-2025-4008High· 8.8KEVEPSS 44%15 h ago
Smartbedded Meteobridge Command Injection Vulnerability
- CVE-2024-9474High· 7.2KEVEXPLOITEPSS 94%15 h ago
Palo Alto Networks PAN-OS Management Interface OS Command Injection Vulnerability
- CVE-2024-3400Critical· 10.0KEVEXPLOITEPSS 94%15 h ago
Palo Alto Networks PAN-OS Command Injection Vulnerability
- CVE-2024-3273High· 7.3KEVEPSS 94%15 h ago
D-Link Multiple NAS Devices Command Injection Vulnerability
- CVE-2025-59689Medium· 6.1KEVEPSS 7%15 h ago
Libraesva Email Security Gateway Command Injection Vulnerability
- CVE-2020-2509Critical· 9.8KEVEPSS 84%15 h ago
QNAP Network-Attached Storage (NAS) Command Injection Vulnerability
- CVE-2010-5330Critical· 9.8KEVEPSS 43%15 h ago
Ubiquiti AirOS Command Injection Vulnerability
- CVE-2021-22899High· 8.8KEVEPSS 20%15 h ago
Ivanti Pulse Connect Secure Command Injection Vulnerability
- CVE-2020-25079High· 8.8KEVEPSS 42%15 h ago
D-Link DCS-2530L and DCS-2670L Command Injection Vulnerability
- CVE-2026-42271High· 8.8KEVEPSS 61%15 h ago
BerriAI LiteLLM Command Injection Vulnerability
pypi - CVE-2023-20118Medium· 6.5KEVEPSS 4%15 h ago
Cisco Small Business RV Series Routers Command Injection Vulnerability
- CVE-2023-1671Critical· 9.8KEVEXPLOITEPSS 94%15 h ago
Sophos Web Appliance Command Injection Vulnerability
- CVE-2016-20017Critical· 9.8KEVEXPLOITEPSS 92%15 h ago
D-Link DSL-2750B Devices Command Injection Vulnerability
- CVE-2024-12356Critical· 9.8KEVEXPLOITEPSS 94%15 h ago
BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability
- CVE-2026-46529—EPSS 0%18 h ago
Atril Document Viewer is the default document reader of the MATE desktop environment for Linux. A single-click remote code execution vulnerability in versions prior to 1.26.3 and 1.28.4 allows an attacker to achieve arbitrary code execution
- CVE-2026-45558Critical· 9.9EPSS 0%2 d ago
Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. In versions 8.2.6.4 and prior, the HAProxy section-save endpoints (POST /api/service/haproxy/<server_id>/section/<section_type> and the PUT / global / de
- CVE-2026-11339Medium· 6.3EPSS 0%3 d ago
A vulnerability was detected in D-Link DWR-M920 up to 1.1.50. The affected element is the function sub_41CF20 of the file /boafrm/formUSSDSetup. The manipulation of the argument ussdValue results in command injection. It is possible to laun
- CVE-2026-11449Medium· 6.3EPSS 1%3 d ago
A security vulnerability has been detected in GL.iNet GL-MT3000 4.4.5. The impacted element is the function rpc_sys of the file /cgi-bin/luci/rpc of the component LuCI JSON-RPC Interface. Such manipulation leads to command injection. The at
- CVE-2026-11572High· 8.8EPSS 0%3 d ago
Versions of the package degit before 2.8.6, from 3.0.0 and before 3.3.1 are vulnerable to Command Injection due to improper sanitisation of user input for git shell commands directly invoked with exec() method by _cloneWithGit() and fetchRe
- CVE-2025-52903High· 8.0EPSS 1%3 d ago
filebrowser Allows Shell Commands to Spawn Other Commands
go - CVE-2025-52904High· 8.0EPSS 1%3 d ago
File Browser: Command Execution not Limited to Scope
go - CVE-2026-11556High· 8.8EPSS 0%4 d ago
A security flaw has been discovered in Tenda F451 1.0.0.7/1.0.0.9. Impacted is the function formWriteFacMac of the file /goform/WriteFacMac of the component Web Management Interface. Performing a manipulation of the argument mac results in
- CVE-2026-11451High· 7.3EPSS 1%4 d ago
A flaw has been found in GL.iNet GL-MT3000 4.4.5. This impacts the function snprintf of the file /cgi-bin/glc of the component FTP Protocol Handler. Executing a manipulation of the argument media_dir can lead to command injection. It is pos
- CVE-2026-11450High· 7.3EPSS 1%4 d ago
A vulnerability was detected in GL.iNet GL-MT3000 4.4.5. This affects the function dlopen in the library /usr/lib/oui-httpd/rpc/ of the component Path Normalization Handler. Performing a manipulation of the argument dev_name results in comm
- CVE-2026-11448Medium· 4.7EPSS 0%4 d ago
A weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. The affected element is the function realpath of the file /rpc of the component Minidlna Service. This manipulation of the argument kube. set causes command injection. The att
- CVE-2026-10870High· 7.2EPSS 0%4 d ago
A flaw has been found in Shibby Tomato 1.28.0000. This affects the function start_dhcpc of the file /sbin/rc of the component Web UI. This manipulation causes os command injection. It is possible to initiate the attack remotely. The exploit
- CVE-2026-11406Medium· 6.3EPSS 1%4 d ago
A vulnerability was determined in GL.iNet MT3000 up to 4.4.5. This vulnerability affects unknown code of the file ovpnclient.sh of the component OpenVPN Client Import Workflow. This manipulation causes command injection. Remote exploitation
- CVE-2026-11447Medium· 6.3EPSS 1%4 d ago
A security flaw has been discovered in GL.iNet GL-MT3000 up to 4.4.5. Impacted is the function iwinfo_backend of the file iwinfo.so of the component MTK Backend. The manipulation of the argument device results in command injection. The atta
- CVE-2026-11487Medium· 5.3EPSS 0%4 d ago
A flaw has been found in Neovim up to 0.12.2. Affected by this issue is the function M.read of the file runtime/lua/vim/secure.lua of the component View Branch. Executing a manipulation of the argument path can lead to command injection. It
- CVE-2026-11452High· 7.3EPSS 1%4 d ago
A vulnerability has been found in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function FUN_0042e200 of the file /cgi-bin/glc of the component SET_USER_PWD Handler. The manipulation of the argument Password leads to command injection. The
- CVE-2026-11455Medium· 5.0EPSS 1%4 d ago
A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function check_cmd_exists of the file metagpt/utils/common.py. This manipulation of the argument mermaid.path causes command injection. Th
- CVE-2026-11408Medium· 6.3EPSS 1%4 d ago
A vulnerability was identified in vertex-app vertex up to 2026.02.12. This issue affects some unknown processing of the file app/model/LogMod.js of the component Log Viewer Endpoint. Such manipulation of the argument req.query leads to os c
- CVE-2026-45497High· 7.7EPSS 0%4 d ago
Improper neutralization of special elements used in a command ('command injection') in Microsoft Copilot allows an authorized attacker to execute code over a network.
- CVE-2026-42824Medium· 6.5EPSS 0%4 d ago
Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to disclose information over a network.
CWE catalog data sourced from MITRE. CVE associations come from NVD weakness mappings; some CVEs carry multiple CWEs.