ThingsBoard < v4.2.1 SVG Image Stored XSS_CVE-2025-34281

5.1 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

Description

ThingsBoard versions < 4.2.1 contain a stored cross-site scripting (XSS) vulnerability in the dashboard's Image Upload Gallery feature. An attacker can upload an SVG file containing malicious JavaScript, which may be executed when the file is rendered in the UI. This issue results from insufficient sanitization and improper content-type validation of uploaded SVG files.

Basic Information

ID CVE-2025-34281

Source VulnCheck

Published Oct 17, 2025 at 18:33

Modified Oct 17, 2025 at 18:59

Affected Product

Vendor ThingsBoard, Inc.

Product ThingsBoard

Affected Versions ThingsBoard, Inc. ThingsBoard 0

CWE Classification

CWE-79

References

{
    "lastseen": "",
    "description": "ThingsBoard versions < 4.2.1 contain a stored cross-site scripting (XSS) vulnerability in the dashboard's Image Upload Gallery feature. An attacker can upload an SVG file containing malicious JavaScript, which may be executed when the file is rendered in the UI. This issue results from insufficient sanitization and improper content-type validation of uploaded SVG files.",
    "published": "2025-10-17T18:33:03.941Z",
    "modified": "2025-10-17T18:59:51.297Z",
    "type": "cve",
    "title": "ThingsBoard < v4.2.1 SVG Image Stored XSS",
    "source": "VulnCheck",
    "references": "https://github.com/thingsboard/thingsboard/releases/tag/v4.2.1\nhttps://github.com/thingsboard/thingsboard/pull/13927\nhttps://www.vulncheck.com/advisories/thingsboard-svg-image-stored-xss",
    "id": "CVE-2025-34281",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79"
    ],
    "cvelist": null,
    "sourceData": "ThingsBoard, Inc. ThingsBoard 0",
    "sourceHref": "",
    "cvss": {
        "score": 5.1,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "ThingsBoard",
    "version": "0",
    "vendor": "ThingsBoard, Inc.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}