ctipilot.chSwitzerland · Europe · Public sector

Progress Telerik UI for ASP.NET AJAX — RadFilter deserialization RCE (CVSS 9.8)

cve · CVE-2026-6023

First covered
2026-05-07
Last covered
2026-05-07
Appearances
1

All cited sources for this topic (2)

Story timeline

  1. 2026-05-07CTI Daily Brief — 2026-05-07
    active_vulnsFirst coverage. Insecure deserialization RCE in RadFilter control; CERT-FR CERTFR-2026-AVI-0542; no confirmed active exploitation; fixed in 2026.1.421.