THREAT OPS › CVEs › CVE-2025-4008
CVE-2025-4008 — Smartbedded Meteobridge Command Injection Vulnerability
Smartbedded Meteobridge contains a command injection vulnerability that could allow remote unauthenticated attackers to gain arbitrary command execution with elevated privileges (root) on affected devices.
Vulnerability details
- Affected productsMeteobridge
- KEV remediation due2025-10-23