CVE-2018-15122

NONE EPSS 64.0%
Published Aug 16, 20187y ago · Modified Jun 17, 20262w ago
Find Similar
Published Aug 16, 2018 7y ago
Last Modified Jun 17, 2026 2w ago

Description

An issue found in Progress Telerik JustAssembly through 2018.1.323.2 and JustDecompile through 2018.2.605.0 makes it possible to execute code by decompiling a compiled .NET object (such as DLL or EXE) with an embedded resource file by clicking on the resource.

Threat Intelligence

EPSS Exploit Probability
64.0% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-20 Improper Input Validation Validation

Affected Products 2

VendorProductVersionRange
telerikjustassembly*≥2018.1.323.2
telerikjustdecompile*≥2018.2.605.0

References 2

  • docs.telerik.com https://docs.telerik.com/devtools/justdecompile/knowledge-base/jd-ja-resources-vulnerability
    Vendor Advisory
  • telerik.com https://www.telerik.com/support/whats-new/justdecompile/release-history/justdecompile-r2-2018-sp1
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.