CVE-2024-36858 Blast Radius

CRITICAL • CVSS 9.8An arbitrary file upload vulnerability in the /v1/app/writeFileSync interface of Jan v0.4.12 allows attackers to execute arbitrary code via uploading

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2024-36858.

Start Free Scan →← Back to CVE-2024-36858