Progress: >> Telerik Ui For Winforms Security Vulnerabilities
In ProgressĀ® TelerikĀ® UI for WinForms, versions prior to 2025 Q1 (2025.1.211), using the improper limitation of a target path can lead to decompressing an archive's content into a restricted directory.
CVSS Score
7.8
EPSS Score
0.001
Published
2025-02-12
In Progress Telerik UI for WinForms versions prior to 2024 Q4 (2024.4.1113), a code execution attack is possible through an insecure deserialization vulnerability.
CVSS Score
7.8
EPSS Score
0.001
Published
2024-11-13
A local code execution vulnerability is possible in Telerik UI for WinForms beginning in v2021.1.122 but prior to v2024.2.514. This vulnerability could allow an untrusted theme assembly to execute arbitrary code on the local Windows system.
CVSS Score
7.2
EPSS Score
0.0
Published
2024-05-15