CNNVD-202508-1987 Information

CNNVD ID

CNNVD-202508-1987

Related CVE

CVE-2025-9094

• CNNVD Published: 2025-08-17

Description (Chinese)

ThingsBoard是ThingsBoard团队的一个基于Java用于IOT设备进行监控、管理、数据收集的平台。 ThingsBoard 4.1版本存在安全漏洞，该漏洞源于Add Gateway Handler组件对模板引擎特殊元素中和不当。

Description (English)

ThingsBoard is a platform for monitoring, managing and collecting data based on Java for IOT equipment. There is a security loophole in version 4.1 of ThingsBoard, which stems from the inappropriate alignment of the Add Gateway Handler component with the specific elements of the template engine.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

ThingsBoard

Published

2025-08-17

Last Modified

2026-02-24

References

https://vuldb.com/?id.320416 https://drive.google.com/file/d/1cZy-rfQXsF58kJIVs4UXj7usXJuhjZjA/view https://vuldb.com/?submit.626292 https://vuldb.com/?ctiid.320416 https://access.redhat.com/security/cve/cve-2025-9094 https://nvd.nist.gov/vuln/detail/CVE-2025-9094