Details
-
Type:
Epic
-
Status: Closed
-
Priority:
Minor
-
Resolution: Fixed
-
Affects Version/s: V1.6.51.51629
-
Fix Version/s: V1.7, V1.6.57.52885
-
Epic Name:Telerik UI for WPF Vulnerability Fixes
-
Epic Status:In Progress
-
Account:Device Library 1 (operativ) (DEVLIB)
-
Epic Colour:ghx-label-3
-
WSJF:-1
-
Cost of Delay (CoD):0
-
Job Size:0.5
-
User Business Value (UBV):0
-
Time Criticality (TC):0
-
Risk Reduction (RR):0
-
Opportunity Enablement (OE):0
Description
Updating Telerik UI for WPF to address the fix vulnerabilities:
Fixes for the following CVE:
- https://docs.telerik.com/devtools/wpf/knowledge-base/unsafe-deserialization-cve-2024-8316
- https://docs.telerik.com/devtools/wpf/knowledge-base/kb-security-unsafe-deserialization-cve-2024-10012
- https://docs.telerik.com/devtools/wpf/knowledge-base/kb-security-unsafe-deserialization-vulnerability-cve-2024-10095
- https://docs.telerik.com/devtools/wpf/knowledge-base/command-injection-cve-2024-7575
- https://docs.telerik.com/devtools/wpf/knowledge-base/unsafe-deserialization-cve-2024-7576