Lucene search
K

4 matches found

Check Point Advisories
Check Point Advisories
added 2019/03/14 12:0 a.m.23 views

Telerik Web UI Information Disclosure (CVE-2017-9248)

A security bypass vulnerability exists in Telerik Web UI. Successful exploitation of this vulnerability can lead to cross-site scripting, arbitrary file uploads and downloads, leak of MachineKey and compromise of the ASP.NET ViewState on the affected system...

7.5CVSS2AI score0.75098EPSS
Exploits5
CNVD
CNVD
added 2017/07/07 12:0 a.m.6 views

Multiple Vulnerabilities in ASP.NET AJAX and Sitefinity Progress Telerik UI

ASP.NET AJAX is a control for ASP.NET; Sitefinity is an open source platform for building enterprise websites and intranets. Progress Telerik UI is a UI user interface for ASP.NET controls that handles AJAX, developed by American Telerik. A security vulnerability in Telerik.Web.UI.dll for Progres...

9.8CVSS6.5AI score0.75098EPSS
Exploits5References1
Vulnrichment
Vulnrichment
added 2017/07/03 7:0 p.m.13 views

CVE-2017-9248

Telerik.Web.UI.dll in Progress Telerik UI for ASP.NET AJAX before R2 2017 SP1 and Sitefinity before 10.0.6412.0 does not properly protect Telerik.Web.UI.DialogParametersEncryptionKey or the MachineKey, which makes it easier for remote attackers to defeat cryptographic protection mechanisms, leadi...

6.9AI score0.75098EPSS
Exploits5References4
ATTACKERKB
ATTACKERKB
added 2017/07/03 12:0 a.m.116 views

CVE-2017-9248

Telerik.Web.UI.dll in Progress Telerik UI for ASP.NET AJAX before R2 2017 SP1 and Sitefinity before 10.0.6412.0 does not properly protect Telerik.Web.UI.DialogParametersEncryptionKey or the MachineKey, which makes it easier for remote attackers to defeat cryptographic protection mechanisms, leadi...

9.8CVSS8.9AI score0.75098EPSS
In wildExploits5References6
Rows per page
Query Builder