CVE-2025-60787

high-risk

Published 2025-10-03

MotionEye v0.43.1b4 and before is vulnerable to OS Command Injection in configuration parameters such as image_file_name. Unsanitized user input is written to Motion configuration files, allowing remote authenticated attackers with admin access to achieve code execution when Motion is restarted.

Do I need to act?

66.0% chance of exploitation in next 30 days

EPSS score — higher than 34% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

1 public exploit available

52481

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.2/10 High

NETWORK / LOW complexity

Affected Products (5)

Motioneye

Affected Vendors

Motioneye Project

References (2)

Broken Link http://motioneye-project.com

Exploit https://github.com/prabhatverma47/motionEye-RCE-through-config-parameter

/ 100

high-risk

Severity 26/34 · High

Exploitability 19/34 · Moderate

Exposure 12/34 · Low