How severe is CVE-2024-3892?

CVE-2024-3892 has a CVSS v3 score of 7.2 (HIGH).

CVE-2024-3892

Name: telerik_ui_for_winforms
Author: progress

7.2HIGH

A local code execution vulnerability is possible in Telerik UI for WinForms beginning in v2021.1.122 but prior to v2024.2.514. This vulnerability could allow an untrusted theme assembly to execute arb

发布于: 5/15/2024更新于: 7/3/2025

描述

A local code execution vulnerability is possible in Telerik UI for WinForms beginning in v2021.1.122 but prior to v2024.2.514. This vulnerability could allow an untrusted theme assembly to execute arbitrary code on the local Windows system.

AI分析AI驱动

受影响产品

progresstelerik_ui_for_winforms

参考资料

https://docs.telerik.com/devtools/winforms/knowledge-base/local-code-execution-vulnerability-cve-2024-3892
Vendor Advisory
https://docs.telerik.com/devtools/winforms/knowledge-base/local-code-execution-vulnerability-cve-2024-3892
Vendor Advisory