Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Default static key in ThingsBoard IoT platform can give attackers admin access
Malware and Vulnerabilities
April 07, 2023
CSO Online
The flaw was fixed in ThingsBoard version 3.4.2 by generating a random key for every new installation or upgrade to version 3.4.2 or later. If admins can't upgrade immediately, they can manually change the default signing key for older versions.
Read More
ThingsBoard
IoT platform
CVE-2023-26462
Privilege Escalation Vulnerability
JSON Web Tokens (JWT)
Publisher
Previous
Hackers leak info on 16,000 Aussie school kids
Breaches and Incidents
Next
Pro-Russia Hacker Group Launches DDoS Attacks Against F ...
Breaches and Incidents
/https://cyware-ent.s3.amazonaws.com/image_bank/a4e4_shutterstock_544190902.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/59df_shutterstock_262325069.jpeg)
