NVD disclosure day

Published threat advisories for August 23, 2017

CVE-2017-11357

Progress Telerik UI for ASP.NET AJAX File Upload Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A flaw in Progress Telerik UI for ASP.NET AJAX allows attackers to upload arbitrary files or execute code. This impacts organizations using the affected component, posing risks of unauthorized access, data compromise, and system disruption.

NVD published: August 23, 2017 • CISA KEV

CVE advisoryKnown Exploit

CVE-2017-11317

Telerik UI for ASP.NET AJAX File Upload and Code Execution Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A weakness in Telerik UI for ASP.NET AJAX's file upload encryption allows attackers to upload files or execute code. This affects organizations using specific versions of the component, posing risks to systems and data.

NVD published: August 23, 2017 • CISA KEV