📦

ui_for_silverlight

Name: ui_for_silverlight
Author: WatchStack

Vendor: telerik

Login to add this product to WatchStack

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 0.42% Exploit Prob.

Latest CVE CVE-2020-11414 Mar 31

Security Vulnerability Index

Page 1 / 1

7.5 CVSS

CVE-2020-11414

An issue was discovered in Progress Telerik UI for Silverlight before 2020.1.330. The RadUploadHandler class in RadUpload for Silverlight expects a web request that provides the file location of the uploading file along with a few other parameters. The uploading file location should be inside the directory where the upload handler class is defined. Before 2020.1.330, a crafted web request could result in uploads to arbitrary locations.

EPSS: 0.42%

Severity: HIGH

Mar 31, 2020

Displaying 1 of 1 Total Entries

1

Total 1 Sections