CVE-2026-2878 | Progress Telerik UI for ASP.NET AJAX 2021.1.224/2025.1.416 File Content RadAsyncUpload entropy

Inserito da Angelo Barbosa | Feb 25, 2026 | CVE

A vulnerability was found in Progress Telerik UI for ASP.NET AJAX 2021.1.224/2025.1.416. It has been classified as problematic. This vulnerability affects the function RadAsyncUpload of the component File Content Handler. This manipulation causes insufficient entropy.

The identification of this vulnerability is CVE-2026-2878. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2026-2878 | Progress Telerik UI for ASP.NET AJAX 2021.1.224/2025.1.416 File Content RadAsyncUpload entropy

Post correlati

CVE-2024-27517 | Webasyst 2.9.9 Blog cross site scripting (Issue 377)

CVE-2024-9725 | Trimble SketchUp Viewer SKP File Parser use after free (ZDI-24-1478)

CVE-2026-25315 | hCaptcha for WP Plugin up to 4.22.0 on WordPress authorization

CVE-2024-23838 | TrueLayer prior 1.6.0 server-side request forgery