COOEY // HUBcompliance · community · intelligence

FAIL › dossier

User Interface (UI) for ASP.NET AJAX product

2
failure events
0
zero-days
2
RCEs
2
on KEV
1
critical
95
worst shame

Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.

Failure history 2 events

DateEventSevFlagsShameSummary
2023-01-26 CVE-2017-11357 critical ⚡RCE ⌖KEV 95 Telerik UI for ASP.NET AJAX contains an insecure direct object reference vulnerability in RadAsyncUpload that can result in file uploads in a limited location and/or remote code execution.
2022-04-11 CVE-2017-11317 high ⚡RCE ⌖KEV 65 Telerik.Web.UI in Progress Telerik UI for ASP.NET AJAX allows remote attackers to perform arbitrary file uploads or execute arbitrary code.