CNNVD-202510-458 Information
Oct 03, 2025
cve
CNNVD ID
CNNVD-202510-458
Related CVE
- CNNVD Published: 2025-10-03
Description (Chinese)
motionEye是motionEye开源的一个守护进程的web前端。 MotionEye v0.43.1b4及之前版本存在安全漏洞,该漏洞源于配置参数未清理用户输入,可能导致OS命令注入攻击。
Description (English)
Motioneye is the front-end of the web-based motioneye source. MotionEye v. 0.43.1b4 and previous versions had a security loophole, which stemmed from the uncleaned user input of the configuration parameters, which could lead to an OS order being injected into the attack.
Hazard Level
High
Vulnerability Type
其他
Published
2025-10-03
Last Modified
2026-02-24
References
http://motioneye-project.com https://github.com/prabhatverma47/motionEye-RCE-through-config-parameter https://cxsecurity.com/issue/WLB-2026020014 https://www.exploit-db.com/exploits/52481
Share on: