CVE-2022-48341

Published: 2023-02-23T06:15Z

Last Modified: 2025-03-12T15:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

ThingsBoard 3.4.1 could allow a remote authenticated attacker to achieve Vertical Privilege Escalation. A Tenant Administrator can obtain System Administrator dashboard access by modifying the scope via the scopes parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt