CVE-2025-4008HIGH · 8.8TrackedCISA KEV

Smartbedded · Meteobridge

Smartbedded Meteobridge contains a command injection vulnerability that could allow remote unauthenticated attackers to gain arbitrary command execution with elevated privileges (root) on affected devices.

Disclosed

2025-05-21

384 days ago

Status

no honeypot capture yet

on CISA KEV — watching

7-day events

across 0 distinct IPs

7-day spread

0 ASN · 0 cty

0 active days

Top ASNs

No events captured yet.

Top countries

No events captured yet.

References

https://forum.meteohub.de/viewtopic.php?t=18687
https://nvd.nist.gov/vuln/detail/CVE-2025-4008

↗ NVD ↗ CISA KEV ↗ Search analyses