CVE-2019-18935CISA KEVEPSS p100.0%

CVE-2019-18935Progress Telerik UI for ASP.NET AJAX Deserialization of Untrusted Data Vulnerability

Progress / Telerik UI for ASP.NET AJAX

Description

Progress Telerik UI for ASP.NET AJAX contains a deserialization of untrusted data vulnerability through RadAsyncUpload which leads to code execution on the server in the context of the w3wp.exe process.

Scoring

EPSS99.74% probability of exploitation · percentile 100.0% · 2026-06-15T12:03:41Z

CISA KEV entry

Added to KEV: 2021-11-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryProgress Telerik UI for ASP.NET AJAX Deserialization of Untrusted Data Vulnerabilitykev-cve-2019-189350%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Telerik UI for ASP.NET AJAX Unrestricted File Upload Vulnerability
CVE
Telerik UI for ASP.NET AJAX Insecure Direct Object Reference Vulnerability
CVE
Progress Telerik UI for ASP.NET AJAX and Sitefinity Cryptographic Weakness Vulnerability
CVE
CVE-2026-6023
CVE
Progress WS_FTP Server Deserialization of Untrusted Data Vulnerability
CVE
CVE-2025-47530
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.