Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
An arbitrary file upload vulnerability in the Image Gallery of ThingsBoard Community, ThingsBoard Cloud and ThingsBoard Professional v3.8.1 allows attackers to execute arbitrary code via uploading a crafted file.
No PoCs from references.
- https://github.com/PuddinCat/GithubRepoSpider
- https://github.com/cybsecsid/ThingsBoard-IoT-Platform-CVE-2024-55466
- https://github.com/plzheheplztrying/cve_monitor