CVE-2017-11357

CRITICAL KEV RANSOMWARE

Telerik UI For Asp.net Ajax < 2020.1.114 - Unrestricted File Upload

Title source: rule

Description

Progress Telerik UI for ASP.NET AJAX before R2 2017 SP2 does not properly restrict user input to RadAsyncUpload, which allows remote attackers to perform arbitrary file uploads or execute arbitrary code.

Exploits (3)

exploitdb WORKING POC

by Paul Taylor · pythonwebappsaspx

https://www.exploit-db.com/exploits/43874

View Code ZIP pw:eip

vulncheck_xdb SCANNER

remote

https://github.com/hnytgl/TelerikUI-RCE

View Code ZIP pw:eip

vulncheck_xdb

remote

https://github.com/hlong12042/CVE-2017-11317-and-CVE-2017-11357-in-Telerik

View on vulncheck_xdb

References (3)

[Mitigation, Vendor Advisory] http://www.telerik.com/support/kb/aspnet-ajax/upload-%28async%29/details/insecure-direct-object-reference

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/43874/

[Third Party Advisory, US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-11357

Scores

CVSS v3 9.8

EPSS 0.9368

EPSS Percentile 99.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2023-01-26

VulnCheck KEV 2020-10-20

InTheWild.io 2023-01-26

ENISA EUVD EUVD-2017-2986

Ransomware Use Confirmed

CWE

CWE-434

Status published

Products (2)

progress/telerik_ui_for_asp.net_ajax < 2020.1.114

telerik/ui_for_asp.net_ajax < 2020.1.114

Published Aug 23, 2017

KEV Added Jan 26, 2023

Tracked Since Feb 18, 2026