CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Motioneye Project: >> Motioneye >> 0.43.1 Security Vulnerabilities

CVE-2025-60787

MotionEye v0.43.1b4 and before is vulnerable to OS Command Injection in configuration parameters such as image_file_name. Unsanitized user input is written to Motion configuration files, allowing remote authenticated attackers with admin access to achieve code execution when Motion is restarted.

CVSS Score

7.2

EPSS Score

0.32

Published

2025-10-03

Page 1

Vulnerabilities

Vulnerable Software

Motioneye Project: >> Motioneye >> 0.43.1 Security Vulnerabilities

Products

Pricing

Contact Us