Progress Telerik Ui For Asp.net Ajax — known CVE vulnerabilities
Every CVE whose affected-product data names Progress Telerik Ui For Asp.net Ajax, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2019-19790 — CVSS 9.8 (critical): Path traversal in RadChart in Telerik UI for ASP.NET AJAX allows a remote attacker to read and delete an image with extension .BMP, .EXIF…
CVE-2021-28141 — CVSS 9.8 (critical): An issue was discovered in Progress Telerik UI for ASP.NET AJAX 2021.1.224. It allows unauthorized access to MicrosoftAjax.js through the…
CVE-2026-6023 — CVSS 8.1 (high): In Progress® Telerik® UI for AJAX versions 2024.4.1114 through 2026.1.421, the RadFilter control is vulnerable to insecure…
CVE-2025-3600 — CVSS 7.5 (high): In Progress® Telerik® UI for AJAX, versions 2011.2.712 to 2025.1.218, an unsafe reflection vulnerability exists that may lead to an…
CVE-2014-2217 — CVSS 7.5 (high): Absolute path traversal vulnerability in the RadAsyncUpload control in the RadControls in Telerik UI for ASP.NET AJAX before Q3 2012 SP2…
CVE-2026-6022 — CVSS 7.5 (high): In Progress® Telerik® UI for AJAX prior to 2026.1.421, RadAsyncUpload contains an uncontrolled resource consumption vulnerability that…
CVE-2026-2878 — CVSS 5.3 (medium): In Progress® Telerik® UI for AJAX, versions prior to 2026.1.225, an insufficient entropy vulnerability exists in RadAsyncUpload, where a…