Progress Telerik UI for WinForms < 2024.4.1113 安全でない逆シリアル化

Language:

バージョン 1.4 Jan 8, 2025, 10:03 AM CVSS metrics ("CVSSv2 score" set to 7.2) CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C") CVSSv2 severity (based on CVE-2024-10013, severity increased from "Medium" to "High") Plugin Feed: 202501081003
バージョン 1.3 Nov 22, 2024, 6:54 PM IAVM reference STIG Severity (set to "I") Plugin Feed: 202411221854
バージョン 1.2 Nov 22, 2024, 10:13 AM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C") CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C") Exploit attributes ("Exploit available" set to "False") Exploit attributes ("Exploitability ease" set to "No known exploits are available") Plugin Feed: 202411221013
バージョン 1.1 Nov 21, 2024, 12:07 PM New Plugin Feed: 202411211207

* Changelogs are generally available for changes made after Nov 1, 2022