映射到 CWE-78 的搜索结果 (263)

CVE-2017-7637(发布:2018-06-05 17:29:00)NM
CVSS10.0

[原文]QNAP NAS application Proxy Server through version 1.2.0 allows remote attackers to run arbitrary OS commands against the system with root privileges.

CVE-2018-4923(发布:2018-05-19 13:29:00)NMS
CVSS6.4

[原文]Adobe Connect versions 9.7 and earlier have an exploitable OS Command Injection. Successful exploitation could lead to arbitrary file deletion.

CVE-2018-4924(发布:2018-05-19 13:29:00)NMS
CVSS10.0

[原文]Adobe Dreamweaver CC versions 18.0 and earlier have an OS Command Injection vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

CVE-2018-6021(发布:2018-05-09 17:29:00)NM
CVSS6.5

[原文]Silex SD-320AN version 2.01 and prior and GE MobileLink(GEH-SD-320AN) version GEH-1.1 and prior have a system call parameter that is not properly sanitized, which may allow remote code execution.

CVE-2018-1239(发布:2018-05-08 09:29:01)NMPS
CVSS9.0

[原文]Dell EMC Unity Operating Environment (OE) versions prior to 4.3.0.1522077968 are affected by multiple OS command injection vulnerabilities. A remote application admin user could potentially exploit the vulnerabilities to execute arbitrary OS commands as system root on the system where Dell EMC Unity is installed.

CVE-2018-3836(发布:2018-04-24 15:29:03)NM
CVSS7.2

[原文]An exploitable command injection vulnerability exists in the gplotMakeOutput function of Leptonica 1.74.4. A specially crafted gplot rootname argument can cause a command injection resulting in arbitrary code execution. An attacker can provide a malicious path as input to an application that passes attacker data to this function to trigger this vulnerability.

12345678下一页尾页 第1页 / 共44页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站