CWE-78 (OS Command Injection)
GPTKB entity
Statements (16)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:Common_Weakness_Enumeration
|
| gptkbp:category |
Software Weakness
|
| gptkbp:cause |
Privilege escalation
Data loss System compromise Arbitrary command execution |
| gptkbp:describes |
Improper Neutralization of Special Elements used in an OS Command
|
| https://www.w3.org/2000/01/rdf-schema#label |
CWE-78 (OS Command Injection)
|
| gptkbp:name |
OS Command Injection
|
| gptkbp:prevention |
Input validation
Least privilege principle Use of safe APIs |
| gptkbp:relatedTo |
CWE-77 (Command Injection)
|
| gptkbp:vulnerableTo |
gptkb:CWE-78
|
| gptkbp:bfsParent |
gptkb:Common_Weakness_Enumeration_(CWE)
|
| gptkbp:bfsLayer |
7
|