The US CISA has issued a warning that a vulnerability in Meteobridge devices, specifically CVE-2025-4008, has been exploited in attacks. This flaw involves an unauthenticated command injection via a public CGI script, impacting roughly 100 exposed devices. #CISA #Meteobridge #CVE-2025-4008
Keypoints
- The Meteobridge vulnerability CVE-2025-4008 allows unauthenticated command injection through a public web interface.
- Approximately 100 devices are exposed to the internet due to misconfiguration, increasing attack risk.
- Threat actors have already exploited this flaw, prompting urgent security updates for affected users.
- CISA expanded its KEV list to include this and other recent exploited vulnerabilities, urging organizations to patch.
- The vulnerability stems from unsanitized user input processed by an eval call in the CGI script.
Read More: https://www.securityweek.com/organizations-warned-of-exploited-meteobridge-vulnerability/