CVE-2024-36598

Name of the Vulnerable Software and Affected Versions Aegon Life version 1.0

Description An arbitrary file upload vulnerability allows attackers to execute arbitrary code via uploading a crafted image file. This issue arises due to improper input validation, enabling attackers to upload malicious files and potentially gain control over the target system.

Recommendations For Aegon Life version 1.0, consider disabling the image upload feature until a patch is available to prevent exploitation of this vulnerability. Restrict access to sensitive areas of the system where uploaded files are processed to minimize the risk of arbitrary code execution.