File Upload Vulnerability in Progress Telerik UI for ASP.NET AJAX
CVE-2017-11357

9.8CRITICAL

Key Information:

Vendor: Telerik
Status: Ui For Asp.net Ajax
Vendor: CVE Published:; 23 August 2017

Badges

💰 Ransomware👾 Exploit Exists🟣 EPSS 93%🦅 CISA Reported

What is CVE-2017-11357?

Progress Telerik UI for ASP.NET AJAX prior to R2 2017 SP2 is prone to an insecure direct object reference vulnerability in the RadAsyncUpload component. This flaw allows remote attackers to bypass input restrictions, enabling unauthorized file uploads. Consequently, this vulnerability can be exploited to execute arbitrary code on the server, posing significant security risks for applications utilizing this software.

CISA has reported CVE-2017-11357

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2017-11357 as being exploited and is known by the CISA as enabling ransomware campaigns.

The CISA's recommendation is: Apply updates per vendor instructions.

References

https://www.exploit-db.com/exploits/43874/

exploitx_refsource_EXPLOIT-DB

http://www.telerik.com/support/kb/aspnet-ajax/upload-%28a...

x_refsource_CONFIRM

EPSS Score

93% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

💰
Used in Ransomware
Jan 26, 2023
👾
Exploit known to exist
Jan 26, 2023
🦅
CISA Reported
Jan 26, 2023
🟡
Public PoC available
Aug 23, 2017
Vulnerability published
Aug 23, 2017
Vulnerability Reserved
Jul 16, 2017