Which versions of Meteobridge Vm are affected by CVE-2025-4008?

CVE-2025-4008 presents significant security risk, a command injection vulnerability rated CVSS 8.7.

Is there a public PoC exploit available for CVE-2025-4008?

Yes, a public proof-of-concept exploit is available for CVE-2025-4008. Prioritise patching immediately. EPSS: 45.9%.

How to fix or mitigate CVE-2025-4008?

Within 24 hours: Identify all affected systems and apply vendor patches immediately. Validate that input sanitization is in place for all user-controlled parameters.

Meteobridge Vm CVE-2025-4008

Q: What is the CVSS score of CVE-2025-4008?

CVE-2025-4008 has a CVSS 4.0 base score of 8.7 (High). CVSS vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 45.9%.

HIGH

Command Injection (CWE-77)

2025-05-21 research@onekey.com

Command Injection Meteobridge Vm Meteobridge Firmware

8.7

CVSS 4.0

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

Analysis Generated

Mar 28, 2026 - 18:43 vuln.today

Added to CISA KEV

Oct 27, 2025 - 17:02 cisa

CISA KEV

PoC Detected

Oct 27, 2025 - 17:02 vuln.today

Public exploit code

CVE Published

May 21, 2025 - 16:15 nvd

HIGH 8.7

DescriptionNVD

The Meteobridge web interface let meteobridge administrator manage their weather station data collection and administer their meteobridge system through a web application written in CGI shell scripts and C.

This web interface exposes an endpoint that is vulnerable to command injection.

Remote unauthenticated attackers can gain arbitrary command execution with elevated privileges ( root ) on affected devices.

AnalysisAI

Meteobridge weather station web interface contains a command injection vulnerability allowing unauthenticated remote attackers to execute arbitrary commands through crafted requests to CGI endpoints.

Technical ContextAI

The CWE-77 command injection in CGI shell scripts passes user input directly to shell commands without sanitization, enabling arbitrary command execution.

RemediationAI

Apply firmware updates. Never expose IoT management interfaces to the internet. Isolate weather station equipment on separate network segments.

CVE-2025-4008 vulnerability details – vuln.today

Back

Meteobridge Vm CVE-2025-4008

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

Share

Meteobridge Vm CVE-2025-4008

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code