The Progress Telerik user interface (UI) for ASP.NET AJAX contains a.NET deserialization vulnerability (CVE-2019-18935), according to information released by the US Cybersecurity and Infrastructure Security Agency (CISA).
The vulnerability also affected the Microsoft Internet Information Services (IIS) web server of a federal civilian executive branch (FCEB) agency between November 2022 and January 2023, according to a report released by CISA on Wednesday.
If successfully exploited, the flaw permits remote code execution read more US Government IIS Server Breached via Telerik Software Flaw.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of theĀ latest threats, breaches, and solutions.