Vulnerabilities > Telerik > UI FOR WPF > High

DATE CVE VULNERABILITY TITLE RISK
2024-09-25 CVE-2024-7679 Command Injection vulnerability in Telerik UI for WPF
In Progress Telerik UI for WinForms versions prior to 2024 Q3 (2024.3.924), a command injection attack is possible through improper neutralization of hyperlink elements.
local
low complexity
telerik CWE-77
7.8
2024-09-25 CVE-2024-8316 Deserialization of Untrusted Data vulnerability in Telerik UI for WPF
In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a code execution attack is possible through an insecure deserialization vulnerability.
local
low complexity
telerik CWE-502
7.8