CVE-2024-10013

Progress UI for WinForms format provider unsafe deserialization vulnerability

CVSS 7.8 HIGHEPSS 0.2%CWE-502

In Progress Telerik UI for WinForms versions prior to 2024 Q4 (2024.4.1113), a code execution attack is possible through an insecure deserialization vulnerability.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Productos afectados

Progress Software · Telerik UI for WinForms

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://docs.telerik.com/devtools/winforms/knowledge-base/unsafe-deserialization-cve-2024-10013