ctipilot.chSwitzerland · Europe · Public sector

Progress Telerik UI for ASP.NET AJAX — RadAsyncUpload resource exhaustion DoS (CVSS 7.5)

cve · CVE-2026-6022 SINGLE-SOURCE-NATIONAL-CERT

Coverage timeline
1
first 2026-05-07 → last 2026-05-07
Briefs
1
1 distinct
Sources cited
9
7 hosts
Sections touched
1
active_vulns
Co-occurring entities
0
no co-occurrence

Story timeline

  1. 2026-05-07CTI Daily Brief — 2026-05-07
    active_vulnsFirst coverage. Disk exhaustion via chunked upload bypassing file-size limits; CERT-FR CERTFR-2026-AVI-0542; fixed in 2026.1.421.

Where this entity is cited

  • active_vulns1

Source distribution

  • cert.ssi.gouv.fr2 (22%)
  • nvd.nist.gov2 (22%)
  • dragos.com1 (11%)
  • helpnetsecurity.com1 (11%)
  • microsoft.com1 (11%)
  • thehackernews.com1 (11%)
  • wiz.io1 (11%)

External references

NVD · cve.org · CISA KEV

All cited sources (9)

Items in briefs about Progress Telerik UI for ASP.NET AJAX — RadAsyncUpload resource exhaustion DoS (CVSS 7.5)

No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.