CVE-2025-4008CISA KEV: Actively Exploited

Smartbedded Meteobridge Command Injection Vulnerability

Published Oct 2, 2025·Updated Oct 2, 2025

Description

Smartbedded Meteobridge contains a command injection vulnerability that could allow remote unauthenticated attackers to gain arbitrary command execution with elevated privileges (root) on affected devices.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free