Login Sign Up

CVE-2025-0332

7.8 HIGH
Path Traversal

📋 TL;DR

This vulnerability in Progress Telerik UI for WinForms allows attackers to perform path traversal attacks during archive decompression, potentially writing files to restricted directories. It affects applications using Telerik UI for WinForms versions before 2025 Q1. Developers and organizations using these vulnerable components are at risk.

💻 Affected Systems

Products:
  • Progress Telerik UI for WinForms
Versions: All versions prior to 2025 Q1 (2025.1.211)
Operating Systems: Windows
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects applications using Telerik's archive decompression functionality with path traversal vulnerabilities.

📦 What is this software?

Telerik Ui For Winforms by Progress

View all CVEs affecting Telerik Ui For Winforms →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution by writing malicious files to system directories, leading to complete system compromise.

🟠

Likely Case

Arbitrary file write to sensitive locations, potentially enabling privilege escalation or data manipulation.

🟢

If Mitigated

Limited impact with proper file system permissions and input validation in place.

🌐 Internet-Facing: MEDIUM - Requires user interaction or specific functionality exposure to be exploitable remotely.
🏢 Internal Only: MEDIUM - Internal applications with vulnerable components could be exploited by authenticated users.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires specific conditions where archive decompression functionality is exposed and user input can be manipulated.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 2025 Q1 (2025.1.211) or later

Vendor Advisory: https://docs.telerik.com/devtools/winforms/knowledge-base/kb-security-path-traversal-cve-2025-0332

Restart Required: No

Instructions:

1. Update Telerik UI for WinForms to version 2025.1.211 or later. 2. Rebuild and redeploy affected applications. 3. Test functionality to ensure compatibility.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement strict input validation for archive file paths and decompression targets

File System Permissions Restriction

Windows

Limit write permissions to directories where archive decompression occurs

🧯 If You Can't Patch

  • Disable or restrict archive decompression functionality in vulnerable applications
  • Implement network segmentation to isolate vulnerable systems from critical assets

🔍 How to Verify

Check if Vulnerable:

Check application dependencies for Telerik UI for WinForms versions below 2025.1.211

Check Version:

Check project references or package manager for Telerik.WinControls version

Verify Fix Applied:

Verify Telerik UI for WinForms version is 2025.1.211 or higher in application dependencies

📡 Detection & Monitoring

Log Indicators:

  • Unusual file write operations to system directories
  • Archive decompression attempts with suspicious paths

Network Indicators:

  • Unusual archive file uploads to affected applications

SIEM Query:

EventID: 4663 OR EventID: 4656 WHERE ObjectName contains 'system32' OR 'program files' AND ProcessName contains application name

📊 Metadata

CVE ID: CVE-2025-0332
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-22
EPSS Score: 0.14% exploit probability (34.8th percentile)
Published: February 12, 2025
Last Updated: July 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-0332, you might also want to check these:

CVE-2024-43955 10.0

CVE-2024-43955 is an unauthenticated path traversal vulnerability in the Droip WordPress plugin that...

Same vulnerability type (CWE-22)
CVE-2025-54261 10.0

This critical path traversal vulnerability in Adobe ColdFusion allows attackers to escape restricted...

Same vulnerability type (CWE-22)
CVE-2024-40628 10.0

This critical vulnerability in JumpServer allows attackers to read arbitrary files from the Celery c...

Same vulnerability type (CWE-22)