216.73.217.176

CVE-2024-55466

· Published 12/05/2025 19:15 · Modified 12/05/2025 19:15

Labels: CVE-2024-55466 2025-05-12CVE-2024-55466[email protected]

Essential information

Published
12/05/2025 19:15
Modified
12/05/2025 19:15
Author
Creator
CISA KEV
No
CWE

Description

An arbitrary file upload vulnerability in the Image Gallery of ThingsBoard Community, ThingsBoard Cloud and ThingsBoard Professional v3.8.1 allows attackers to execute arbitrary code via uploading a crafted file.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
thingsboard / thingsboard community cpe:2.3:a:thingsboard:thingsboard_community:3.8.1:*:*:*:*:*:*:*
thingsboard / thingsboard cloud cpe:2.3:a:thingsboard:thingsboard_cloud:3.8.1:*:*:*:*:*:*:*
thingsboard / thingsboard professional cpe:2.3:a:thingsboard:thingsboard_professional:3.8.1:*:*:*:*:*:*:*

References