Vulnerabilities > Telerik > UI FOR WPF > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-09-25 CVE-2024-7576 Deserialization of Untrusted Data vulnerability in Telerik UI for WPF
In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a code execution attack is possible through an insecure deserialization vulnerability.
network
low complexity
telerik CWE-502
critical
9.8
2024-09-25 CVE-2024-7575 Command Injection vulnerability in Telerik UI for WPF
In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a command injection attack is possible through improper neutralization of hyperlink elements.
network
low complexity
telerik CWE-77
critical
9.8