2 matches found
Smartbedded Meteobridge < 6.2 RCE (CVE-2025-4008)
The version of Smartbedded Meteobridge installed on the remote host is 6.1 or prior. It is, therefore, affected by a command injection vulnerability as referenced in the CVE-2025-4008 advisory. In the template.cgi script, unsanitized user input from the query string is passed directly to an eval...
Smartbedded Meteobridge Command Injection Vulnerability
Smartbedded Meteobridge contains a command injection vulnerability that could allow remote unauthenticated attackers to gain arbitrary command execution with elevated privileges root on affected devices...