CVE-2024-37847

The CVE-2024-37847 entry documents an arbitrary file upload vulnerability affecting MangoOS before 5.1.4 and Mango API before 4.5.5, enabling arbitrary code execution via a crafted file. Affected components: MangoOS and Mango API (versions prior to listed fixes). Root cause: improper handling of ...