Critical severity9.6NVD Advisory· Published May 24, 2024· Updated Apr 15, 2026
CVE-2024-35592
CVE-2024-35592
Description
An arbitrary file upload vulnerability in the Upload function of Box-IM v2.0 allows attackers to execute arbitrary code via uploading a crafted PDF file.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.