All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2017-11357
NONEKEVpublish date unavailable
CVSS / 10
// description
Telerik UI for ASP.NET AJAX contains an insecure direct object reference vulnerability in RadAsyncUpload that can result in file uploads in a limited location and/or remote code execution.
// required action (CISA KEV)
Apply updates per vendor instructions.
added 2023-01-26 00:00 UTC