Hi there,
Are there any hot fix for this vulnerability - Telerik CVE-2019-18935?
Understand there was a hotfix for a similar vulnerability previously for CVE-2017-11317. https://www.dnnsoftware.com/community-blog/cid/155449/critical-security-update--september2017.
Some potentially good news for you. My co-worker and I were researching this, today, becuase of this article https://www.bleepingcompu...o-mine-monero/ It links to https://nvd.nist.gov/vuln/detail/CVE-2019-18935 Which states it was explotable in the "...presence of CVE-2017-11317 or CVE-2017-11357..."
The post you have https://www.dnnsoftware.c...r2017 addresses both of those CVEs and a third. Checking in our env. which is running 9.2+ using the built in security analyzer it appears that the fix from that post has been incorporated.
Hello,
We are using DNN 9.3.2. If we apply the fix shown on this link->
https://www.dnnsoftware.com/community-blog/cid/155449/critical-security-update--september2017 , will it fix this vulnberability?
Regards,
Alok
These Forums are dedicated to the discussion of DNN Platform.
For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:
Awesome! Simply post in the forums using the link below and we'll get you started.