CVE-2026-2878 | Progress Telerik UI for ASP.NET AJAX 2021.1.224/2025.1.416 File Content RadAsyncUpload entropy

Inserito da Angelo Barbosa | Feb 25, 2026 | CVE

A vulnerability was found in Progress Telerik UI for ASP.NET AJAX 2021.1.224/2025.1.416. It has been classified as problematic. This vulnerability affects the function RadAsyncUpload of the component File Content Handler. This manipulation causes insufficient entropy.

The identification of this vulnerability is CVE-2026-2878. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2026-2878 | Progress Telerik UI for ASP.NET AJAX 2021.1.224/2025.1.416 File Content RadAsyncUpload entropy

Post correlati

CVE-2024-35185 | Stacklok Minder up to 0.0.48 REST Ingester resource consumption (GHSA-fjw8-3gp8-4cvx)

CVE-2022-34269 | RWS WorldServer up to 11.7.2 Apache Axis Service ws-legacy/load_dtd system_id server-side request forgery

CVE-2024-41726 | Sky SKYSEA Client View up to 19.210.04e Executable File path traversal

CVE-2024-32955 | Foliovision FV Flowplayer Video Player Plugin up to 7.5.43.7212 on WordPress server-side request forgery