CNNVD-202602-958 Information

CNNVD ID

CNNVD-202602-958

Related CVE

CVE-2026-25643

• CNNVD Published: 2026-02-06

Description (Chinese)

Frigate是Blake Blackshear个人开发者的一款专为具有 AI 对象检测功能的家庭助理设计的完整本地 NVR。 Frigate 0.16.4之前版本存在安全漏洞，该漏洞源于未清理视频流配置中的用户输入，可能导致通过exec指令直接注入系统命令，引发远程命令执行。

Description (English)

Frigate is a complete local NVR designed by Blake Blackshead’s personal developer for family assistants with AI object detection. There was a security loophole in the pre-Frigate 0.16.4 version, which originated from uncleaned user input in the video stream configuration, which could lead to direct injection of the system order through exec command, triggering remote command execution.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-02-06

Last Modified

2026-02-24

References

https://github.com/blakeblackshear/frigate/releases/tag/v0.16.4 https://github.com/blakeblackshear/frigate/security/advisories/GHSA-4c97-5jmr-8f6x

Patch

https://frigate.video/