CVE-2025-4008: Smartbedded Meteobridge Command Injection Vulnerability.
Smartbedded Meteobridge Command Injection Vulnerability. Smartbedded Meteobridge contains a command injection vulnerability that could allow remote unauthenticated attackers to gain arbitrary command execution with elevated privileges (root) on affected devices.
- CISA KEV-listed (remediation due 2025-10-23)
- EPSS 43.9% (97.6% percentile)