Skip to content

Commit 414e717

Browse files
LanceMcCarthyLanceMcCarthy
authored
Update kb-security-unsafe-reflection-cve-2025-3600.md (#689)
* Update kb-security-unsafe-reflection-cve-2025-3600.md * Update kb-security-unsafe-reflection-cve-2025-3600.md
1 parent 41abed1 commit 414e717

File tree

1 file changed

+4
-4
lines changed

1 file changed

+4
-4
lines changed

knowledge-base/kb-security-unsafe-reflection-cve-2025-3600.md

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -13,7 +13,7 @@ Product Alert – May 2025 - [CVE-2025-3600](https://www.cve.org/CVERecord?id=CV
1313

1414
### What Are the Impacts
1515

16-
In Progress® Telerik® UI for AJAX, versions 2011.2712 to 2025.1.218, an attacker can send a specially crafted request that triggers an unsafe reflection vulnerability. This causes an unhandled exception resulting in a crash of the hosting process, leading to denial of service while the application is restarting.
16+
In Progress® Telerik® UI for AJAX, versions 2011.2.712 to 2025.1.218, an attacker can send a specially crafted request that triggers an unsafe reflection vulnerability. This causes an unhandled exception resulting in a crash of the hosting process, leading to denial of service while the application is restarting.
1717

1818
## Issue
1919

@@ -25,7 +25,7 @@ We have addressed the issue and the Progress Telerik team strongly recommends pe
2525

2626
| Current Version | Update to |
2727
|-----------------|----------|
28-
| `>= v2011.2712` && `<= v2025.1.218` (2025 Q1 SP1) | `>= v2025.1.416` (2025 Q1 SP2) |
28+
| `>= v2011.2.712` && `<= v2025.1.218` (2025 Q1 SP1) | `>= v2025.1.416` (2025 Q1 SP2) |
2929

3030
Follow the [update instructions]({%slug introduction/installation/upgrading-instructions/upgrading-a-trial-to-a-developer-license-or-to-a-newer-version%}) for precise instructions. All customers who have a license for UI for AJAX can access the downloads here [Product Downloads | Your Account](https://www.telerik.com/account/downloads/product-download).
3131

@@ -232,6 +232,6 @@ This approach inspects the incoming request and blocks traffic to the affected e
232232

233233
**CVSS:** 7.5
234234

235-
In Progress® Telerik® UI for AJAX, versions 2011.2712 to 2025.1.218, an unsafe reflection vulnerability exists that may lead to an unhandled exception resulting in a crash of the hosting process and denial of service.
235+
In Progress® Telerik® UI for AJAX, versions 2011.2.712 to 2025.1.218, an unsafe reflection vulnerability exists that may lead to an unhandled exception resulting in a crash of the hosting process and denial of service.
236236

237-
Discoverer Credit: Piotr Bazydlo (@chudyPB) of watchTowr
237+
Discoverer Credit: Piotr Bazydlo (@chudyPB) of watchTowr

0 commit comments

Comments
 (0)