CVE-2024-1856
- EPSS 0.15%
- Veröffentlicht 20.03.2024 13:15:15
- Zuletzt bearbeitet 16.01.2025 18:06:29
In Progress® Telerik® Reporting versions prior to 2024 Q1 (18.0.24.130), a code execution attack is possible by a remote threat actor through an insecure deserialization vulnerability.
CVE-2024-1801
- EPSS 0.02%
- Veröffentlicht 20.03.2024 13:15:14
- Zuletzt bearbeitet 16.01.2025 18:04:52
In Progress® Telerik® Reporting versions prior to 2024 Q1 (18.0.24.130), a code execution attack is possible by a local threat actor through an insecure deserialization vulnerability.
CVE-2024-0832
- EPSS 0.67%
- Veröffentlicht 31.01.2024 16:15:46
- Zuletzt bearbeitet 21.11.2024 08:47:28
In Telerik Reporting versions prior to 2024 R1, a privilege elevation vulnerability has been identified in the applications installer component. In an environment where an existing Telerik Reporting install is present, a lower privileged user has th...
CVE-2017-9140
- EPSS 5.52%
- Veröffentlicht 22.05.2017 05:29:03
- Zuletzt bearbeitet 20.04.2025 01:37:25
Cross-site scripting (XSS) vulnerability in Telerik.ReportViewer.WebForms.dll in Telerik Reporting for ASP.NET WebForms Report Viewer control before R1 2017 SP2 (11.0.17.406) allows remote attackers to inject arbitrary web script or HTML via the bgCo...