motioneye

PyPI3 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting motioneyepage 1 of 1

CVE-2021-44255HIGHCVSS 7.2EG 7.2
2022-01-31
vulnerable: 0.27 ... 0.42.1 (56 versions)
Authenticated remote code execution in MotionEye <= 0.42.1 and MotioneEyeOS <= 20200606 allows a remote attacker to upload a configuration backup file containing a malicious python pickle file which will execute arbitrary code on the serve…
CVE-2022-25568HIGHCVSS 7.5EG 9.0✓ Fixed in 0.43.1b1
2022-03-24
vulnerable: 0.27 ... 0.42.1 (56 versions)
MotionEye v0.42.1 and below allows attackers to access sensitive information via a GET request to /config/list. To exploit this vulnerability, a regular user password must be unconfigured.
CVE-2025-47782NONECVSS 0.0EG 0.0✓ Fixed in 0.43.1b4
2025-05-14
vulnerable: 0.43.1b1, 0.43.1b2, 0.43.1b3
motionEye is an online interface for the software motion, a video surveillance program with motion detection. In versions 0.43.1b1 through 0.43.1b3, using a constructed (camera) device path with the `add`/`add_camera` motionEye web API all…

Check whether motioneye is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for motioneye CVEs against the assets you own.

Start Free Scan →