366 matches found
GHSA-H6FC-48RJ-7QQH vulnerabilities
Vulnerabilities for packages: thingsboard...
GHSA-5M62-PW8W-7W9F vulnerabilities
Vulnerabilities for packages: thingsboard...
CVE-2026-43513 vulnerabilities
Vulnerabilities for packages: thingsboard...
CVE-2026-43515 vulnerabilities
Vulnerabilities for packages: thingsboard...
CVE-2026-42498 vulnerabilities
Vulnerabilities for packages: thingsboard...
CVE-2026-41284 vulnerabilities
Vulnerabilities for packages: thingsboard...
GHSA-9M89-8FRQ-C98C vulnerabilities
Vulnerabilities for packages: thingsboard...
GHSA-FV25-8XCX-GQJC vulnerabilities
Vulnerabilities for packages: thingsboard...
CVE-2026-43514 vulnerabilities
Vulnerabilities for packages: thingsboard...
CVE-2026-43512 vulnerabilities
Vulnerabilities for packages: thingsboard...
GHSA-GX5V-XP9W-J4CG vulnerabilities
Vulnerabilities for packages: thingsboard...
GHSA-R29C-68GH-XP6X vulnerabilities
Vulnerabilities for packages: thingsboard...
CVE-2026-41293 vulnerabilities
Vulnerabilities for packages: thingsboard...
GHSA-5MP6-JRQ3-R938 vulnerabilities
Vulnerabilities for packages: thingsboard...
CVE-2026-9568
A weakness has been identified in ThingsBoard up to 4.3.1.1. Affected by this vulnerability is the function getGatewayDockerComposeFile of the file /api/v1/provision of the component YAML Handler. This manipulation causes code injection. It is possible to initiate the attack remotely. The attack'...
CVE-2026-9568
A weakness has been identified in ThingsBoard up to 4.3.1.1. Affected by this vulnerability is the function getGatewayDockerComposeFile of the file /api/v1/provision of the component YAML Handler. This manipulation causes code injection. It is possible to initiate the attack remotely. The attack'...
EUVD-2026-31957
A weakness has been identified in ThingsBoard up to 4.3.1.1. Affected by this vulnerability is the function getGatewayDockerComposeFile of the file /api/v1/provision of the component YAML Handler. This manipulation causes code injection. It is possible to initiate the attack remotely. The attack'...
CVE-2026-9568 ThingsBoard YAML provision getGatewayDockerComposeFile code injection
A weakness has been identified in ThingsBoard up to 4.3.1.1. Affected by this vulnerability is the function getGatewayDockerComposeFile of the file /api/v1/provision of the component YAML Handler. This manipulation causes code injection. It is possible to initiate the attack remotely. The attack'...
CVE-2026-9568
ThingsBoard (up to 4.3.1.1) contains a vulnerability in the YAML Handler’s /api/v1/provision path. The getGatewayDockerComposeFile function can be manipulated to achieve code injection, with remote feasibility and high attack complexity per the provided metrics. No remediation or exploit details ...
CVE-2026-9568
A weakness has been identified in ThingsBoard up to 4.3.1.1. Affected by this vulnerability is the function getGatewayDockerComposeFile of the file /api/v1/provision of the component YAML Handler. This manipulation causes code injection. It is possible to initiate the attack remotely. The attack'...