Critical severity9.6NVD Advisory· Published May 24, 2024· Updated Apr 15, 2026
CVE-2024-35592
CVE-2024-35592
Description
An arbitrary file upload vulnerability in the Upload function of Box-IM v2.0 allows attackers to execute arbitrary code via uploading a crafted PDF file.
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.