Motioneye Project Motioneye — known CVE vulnerabilities
Every CVE whose affected-product data names Motioneye Project Motioneye, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2022-25568 — CVSS 7.5 (high): MotionEye v0.42.1 and below allows attackers to access sensitive information via a GET request to /config/list. To exploit this…
CVE-2021-44255 — CVSS 7.2 (high): Authenticated remote code execution in MotionEye <= 0.42.1 and MotioneEyeOS <= 20200606 allows a remote attacker to upload a configuration…
CVE-2025-60787 — CVSS 7.2 (high): MotionEye v0.43.1b4 and before is vulnerable to OS Command Injection in configuration parameters such as image_file_name. Unsanitized user…