Primary

Context

ThingsBoard Code Injection Vulnerability in YAML Handler

Vulnerability

A code injection vulnerability has been identified in ThingsBoard versions prior to 4.3.1.1. The issue arises in the YAML Handler component, specifically within the getGatewayDockerComposeFile function of the /api/v1/provision file. This vulnerability allows for remote exploitation, although the complexity of the attack is considered high, making exploitation difficult.

Impact

Exploitation of this vulnerability allows for code injection, which could be used to execute arbitrary code on the server.

Reproduction

The vulnerability can be reproduced by sending a request to the /api/v1/provision endpoint with a crafted Docker Compose file that includes malicious code. The injected code will be executed on the server, leading to code execution.

Remediation

Users are advised to update to ThingsBoard version 4.3.1.1 or later, where this vulnerability has been fixed.

Added: May 26, 2026, 10:15 PM

Updated: May 26, 2026, 10:15 PM

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

7.5

exploitability

7.7

remediation

0.0

relevance

9.6

threat

1.6

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

7.5

exploitability

7.7

remediation

0.0

relevance

9.6

threat

1.6

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ThingsBoard Code Injection Vulnerability in YAML Handler

Vulnerability

Impact

Reproduction

Remediation

Affected Products

ThingsBoard

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating