CVE-2025-4008

HIGHCISA KEV

8.8

Description

The Meteobridge web interface let meteobridge administrator manage their weather station data collection and administer their meteobridge system through a web application written in CGI shell scripts and C. This web interface exposes an endpoint that is vulnerable to command injection. Remote unauthenticated attackers can gain arbitrary command execution with elevated privileges ( root ) on affected devices.

Details CVE

Score CVSS v3.18.8

SeveriteHIGH

Vecteur CVSSCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vecteur d'attaqueADJACENT_NETWORK

ComplexiteLOW

Privileges requisNONE

Interaction utilisateurNONE

Publie5/21/2025

Derniere modification10/27/2025

Sourcekev

Observations honeypot0

CISA KEV

FournisseurSmartbedded

ProduitMeteobridge

Nom vulnerabiliteSmartbedded Meteobridge Command Injection Vulnerability

Date ajout KEV2025-10-02

Date limite remediation2025-10-23

Utilise dans ransomwareUnknown

Produits affectes

smartbedded:meteobridge_firmwaresmartbedded:meteobridge_vm

Faiblesses (CWE)

CWE-77CWE-306

References

https://forum.meteohub.de/viewtopic.php?t=18687(research@onekey.com)

https://www.onekey.com/resource/security-advisory-remote-command-execution-on-smartbedded-meteobridge-cve-2025-4008(research@onekey.com)

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-4008(134c704f-9b21-4f2e-91b3-4a467353bcc0)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.