How severe is CVE-2024-3892?

CVE-2024-3892 has a CVSS v3 score of 7.2 (HIGH).

CVE-2024-3892

Name: telerik_ui_for_winforms
Author: progress

7.2HIGH

A local code execution vulnerability is possible in Telerik UI for WinForms beginning in v2021.1.122 but prior to v2024.2.514. This vulnerability could allow an untrusted theme assembly to execute arb

Veröffentlicht: 5/15/2024Aktualisiert: 7/3/2025

Beschreibung

A local code execution vulnerability is possible in Telerik UI for WinForms beginning in v2021.1.122 but prior to v2024.2.514. This vulnerability could allow an untrusted theme assembly to execute arbitrary code on the local Windows system.

KI-AnalyseKI-gestützt

Betroffene Produkte

progresstelerik_ui_for_winforms

Referenzen

https://docs.telerik.com/devtools/winforms/knowledge-base/local-code-execution-vulnerability-cve-2024-3892
Vendor Advisory
https://docs.telerik.com/devtools/winforms/knowledge-base/local-code-execution-vulnerability-cve-2024-3892
Vendor Advisory