CVE-2017-11317
Telerik UI for ASP.NET AJAX Unrestricted File Upload Vulnerability
CVSS
—
No CVSS
EPSS
83.5%
p100
KEV
YES
Apr 11, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
83.5%EPSS · 30 days83.5%
2026-06-302026-07-16
Product
Telerik / User Interface (UI) for ASP.NET AJAX
Vulnerability
Telerik UI for ASP.NET AJAX Unrestricted File Upload Vulnerability
Added to KEV
Apr 11, 2022
Remediate by
May 2, 2022
Known ransomware use
No
Summary description
Telerik.Web.UI in Progress Telerik UI for ASP.NET AJAX allows remote attackers to perform arbitrary file uploads or execute arbitrary code.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2017-11317
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2017-11357—99.5%
KEV—80Telerik UI for ASP.NET AJAX Insecure Direct Object Reference Vulnerability—