VYPR
Medium severity6.1NVD Advisory· Published May 24, 2024· Updated Apr 15, 2026

CVE-2024-35595

CVE-2024-35595

Description

An arbitrary file upload vulnerability in the File Preview function of Xintongda OA v2023.12.30.1 allows attackers to execute arbitrary code via uploading a crafted PDF file.

Affected products

1
  • Cnoa/Oallm-fuzzy
    Range: = 2023.12.30.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.