CVE-2017-11357—Telerik UI for ASP.NET AJAX Insecure Direct Object Reference Vulnerability
PUBLISHEDvulnerability record
2023-01-26 · last modified June 21, 2025
Metadata
漏洞名称
Telerik UI for ASP.NET AJAX Insecure Direct Object Reference Vulnerability
描述
Telerik UI for ASP.NET AJAX contains an insecure direct object reference vulnerability in RadAsyncUpload that can result in file uploads in a limited location and/or remote code execution.
已知用于勒索软件活动吗?
采集行动
Apply updates per vendor instructions.