CVE-2023-45303

HIGH

ThingsBoard < 3.5 - Server-Side Template Injection via Email Template Modification

Title source: llm

Description

ThingsBoard before 3.5 allows Server-Side Template Injection if users are allowed to modify an email template, because Apache FreeMarker supports freemarker.template.utility.Execute (for content sent to the /api/admin/settings endpoint).

References (2)

Core 2

Core References

Exploit

https://freemarker.apache.org/docs/api/freemarker/template/utility/Execute.html

Exploit

https://herolab.usd.de/security-advisories/usd-2023-0010/

Scores

CVSS v3 8.4

EPSS 0.0086

EPSS Percentile 53.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-74

Status published

Products (2)

org.thingsboard/thingsboard 0 - 3.5Maven

thingsboard/thingsboard < 3.5

Published Oct 06, 2023

Tracked Since Feb 18, 2026