CVE-2025-3600

Name of the Vulnerable Software and Affected Versions Progress Telerik UI for AJAX versions 2011.2.712 through 2025.1.218

Description An unsafe reflection issue exists in Progress Telerik UI for AJAX. This flaw can lead to an unhandled exception, potentially causing a crash of the hosting process and resulting in a denial of service. Reports indicate that this issue affects millions of enterprise applications worldwide. Exploitation can be achieved with a single HTTP request, and in some cases, may lead to remote code execution when combined with other vulnerabilities. The vulnerability is related to unsafe reflection, a programming technique where an application uses runtime information to examine or modify its own structure and behavior.

Recommendations Update to a version beyond 2025.1.218. At the moment, there is no information about a newer version that contains a fix for this vulnerability.