Command Injection

An attack that executes arbitrary operating system commands on the host through a vulnerable application. It occurs when an application passes unsafe user input directly to a system shell. Successful command injection gives the attacker the same privileges as the application's service account.

Definición editorial de DecipherU. Para definiciones técnicas autorizadas, consulta NIST, ISO, o el organismo de normalización correspondiente.