漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Uncontrolled Resource Consumption Vulnerability in Telerik UI for ASP.NET AJAX
Vulnerability Description
In Progress® Telerik® UI for AJAX prior to 2026.1.421, RadAsyncUpload contains an uncontrolled resource consumption vulnerability that allows file uploads to exceed the configured maximum size due to missing cumulative size enforcement during chunk reassembly, leading to disk space exhaustion.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
Progress Telerik UI for AJAX 资源管理错误漏洞
Vulnerability Description
Progress Telerik UI for AJAX是美国Progress公司的一套Web界面组件库。 Progress Telerik UI for AJAX 2026.1.421之前版本存在资源管理错误漏洞,该漏洞源于RadAsyncUpload缺少分块重组期间的累积大小强制措施,可能导致文件上传超过配置的最大大小,耗尽磁盘空间。
CVSS Information
N/A
Vulnerability Type
N/A