CVE-2024-11629 Telerik Document Processing RTF Export of Arbitrary File Path

In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 2025.1.205, using .NET Standard 2.0, the contents of a file at an arbitrary path can be exported to RTF...

CVE-2024-11343

In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 2025.1.205, unzipping an archive can lead to arbitrary file system access...

CVE-2024-11343

CVE-2024-11343 affects In Progress® Telerik® Document Processing Libraries. A path traversal flaw exists when unzipping archives in versions prior to 2025 Q1 (2025.1.205), enabling arbitrary file system access. Public details consistently identify this as a path traversal issue and state that upg...

CVE-2024-11343 Telerik Document Processing Path Traversal

In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 2025.1.205, unzipping an archive can lead to arbitrary file system access...

CVE-2024-11343 Telerik Document Processing Path Traversal

In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 2025.1.205, unzipping an archive can lead to arbitrary file system access...

Progress Telerik Document Processing Libraries 安全漏洞

Progress Telerik Document Processing Libraries is a document processing library from Progress USA. A security vulnerability exists in Progress Telerik Document Processing Libraries prior to version 2025 Q1, which originates from the ability to export the contents of a file in an arbitrary path to...

Progress Telerik Document Processing Libraries 路径遍历漏洞

Progress Telerik Document Processing Libraries is a document processing library from Progress USA. A path traversal vulnerability exists in Progress Telerik Document Processing Libraries prior to version 2025 Q1, which stems from the fact that an unzip archive operation could lead to arbitrary fi...

PT-2025-6501 · Telerik · Telerik Document Processing Libraries

Name of the Vulnerable Software and Affected Versions: In Progress Telerik Document Processing Libraries versions prior to 2025.1.205 Description: The issue allows arbitrary file system access when unzipping an archive. Recommendations: For versions prior to 2025.1.205, update to version 2025.1.2...

PT-2025-34632

Name of the Vulnerable Software and Affected Versions: PhpOffice/PhpSpreadsheet versions prior to 1.30.0 PhpOffice/PhpSpreadsheet versions prior to 2.1.12 PhpOffice/PhpSpreadsheet versions prior to 2.4.0 PhpOffice/PhpSpreadsheet versions prior to 3.10.0 PhpOffice/PhpSpreadsheet versions prior to...

CVE-2024-8049

In Progress Telerik Document Processing Libraries, versions prior to 2024 Q4 2024.4.1106, importing a document with unsupported features can lead to excessive processing, leading to excessive use of computing resources leaving the application process unavailable...

CVE-2024-8049

In Progress Telerik Document Processing Libraries, versions prior to 2024 Q4 2024.4.1106, importing a document with unsupported features can lead to excessive processing, leading to excessive use of computing resources leaving the application process unavailable...

CVE-2024-8049

Progress Telerik Document Processing Libraries are affected in versions prior to 2024 Q4 (2024.4.1106). The issue arises when importing a document that uses unsupported features, triggering excessive processing that consumes resources and can render the application process unavailable. The confir...

CVE-2024-8049 Telerik Document Processing Improper Handling of Memory Resources

In Progress Telerik Document Processing Libraries, versions prior to 2024 Q4 2024.4.1106, importing a document with unsupported features can lead to excessive processing, leading to excessive use of computing resources leaving the application process unavailable...

CVE-2024-8049 Telerik Document Processing Improper Handling of Memory Resources

In Progress Telerik Document Processing Libraries, versions prior to 2024 Q4 2024.4.1106, importing a document with unsupported features can lead to excessive processing, leading to excessive use of computing resources leaving the application process unavailable...

Progress Telerik Document Processing Libraries 安全漏洞

Progress Telerik Document Processing Libraries is a document processing library from Progress USA. A security vulnerability exists in versions of Progress Telerik Document Processing Libraries prior to 2024 Q4, which originates when importing a document with unsupported functionality can lead to...

CVE-2024-29010

The XML document processed in the GMS ECM URL endpoint is vulnerable to XML external entity XXE injection, potentially resulting in the disclosure of sensitive information. This issue affects GMS: 9.3.4 and earlier versions...

CVE-2024-29010

The XML document processed in the GMS ECM URL endpoint is vulnerable to XML external entity XXE injection, potentially resulting in the disclosure of sensitive information. This issue affects GMS: 9.3.4 and earlier versions...

CVE-2024-23450

A flaw was found in elasticsearch. Trying to process a document in a deeply nested pipeline may cause the related ingest node to crash, resulting in a Denial of Service...

Elasticsearch Uncontrolled Resource Consumption vulnerability

A flaw was discovered in Elasticsearch, where processing a document in a deeply nested pipeline on an ingest node could cause the Elasticsearch node to crash...

CVE-2024-23450

A flaw was discovered in Elasticsearch, where processing a document in a deeply nested pipeline on an ingest node could cause the Elasticsearch node to crash...