An attack in which the goal is execution of arbitrary commands on the host operating system via a vulnerable application.
MITRE. (n.d.). Common Weakness Enumeration (CWE).
