cve/2024/CVE-2024-12632.md

### [CVE-2024-12632](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-12632)
![](https://img.shields.io/static/v1?label=Product&message=Cleo%20Harmony%2C%20VLTrader%2C%20LexiCom&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=0%3C%3D%205.8.0.21%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-434%20Unrestricted%20Upload%20of%20File%20with%20Dangerous%20Type&color=brighgreen)

### Description

In Cleo Harmony up to and including 5.8.0.21, VLTrader up to and including 5.8.0.21, and LexiCom up to and including 5.8.0.21, there is an unrestricted file upload and download that could lead to remote code execution.

### POC

#### Reference
- https://support.cleo.com/hc/en-us/articles/28408134019735-Cleo-Product-Security-Update
- https://www.huntress.com/blog/threat-advisory-oh-no-cleo-cleo-software-actively-being-exploited-in-the-wild

#### Github
No PoCs found on GitHub currently.