HIGH🇵🇱 Wersja polska

CVE-2024-10095

CVSS 8.4v3.1pub. 2024-12-16upd. 2024-12-18

In Progress Telerik UI for WPF versions prior to 2024 Q4 (2024.4.1213), a code execution attack is possible through an insecure deserialization vulnerability.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Telerik Ui For Wpf

    APP
    Telerik
    < 24.4.1213
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEDeserialization
CWE
References

Related vulnerabilities

CVE-2024-10012HIGH7.8ten sam produkt

In Progress Telerik UI for WPF versions prior to 2024 Q4 (2024.4.1111), a code execution attack is possible th...

CVE-2024-7575HIGH7.8ten sam produkt

In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a command injection attack is possible ...

CVE-2024-7576HIGH7.8ten sam produkt

In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a code execution attack is possible thr...

CVE-2024-7679HIGH7.8ten sam produkt

In Progress Telerik UI for WinForms versions prior to 2024 Q3 (2024.3.924), a command injection attack is poss...

CVE-2024-8316HIGH7.8ten sam produkt

In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a code execution attack is possible thr...