Organizations Warned of Exploited Meteobridge Vulnerability
A Meteobridge command-injection vulnerability (CVE-2025-4008) has been exploited in attacks and added to CISA's Known Exploited Vulnerabilities catalog.
CISA Flags Meteobridge CVE-2025-4008 Flaw as Actively Exploited in the Wild
Meteobridge contains a command-injection vulnerability (CVE-2025-4008) allowing unauthenticated remote attackers to execute arbitrary commands as root; vulnerability is actively exploited and patched in version 6.