Lucene search
ProgressSoftwareVULNRICHMENT:CVE-2024-4202HistoryMay 15, 2024 - 4:53 p.m.
CVE-2024-4202 Progress Telerik Reporting Local Instantiation Vulnerability
2024-05-1516:53:30
CWE-94
ProgressSoftware
github.com
2
progress telerik reporting
instantiation vulnerability
code execution
insecure instantiation
cve-2024-4202
7.7 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
7.4 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
In Progress® Telerik® Reporting versions prior to 2024 Q2 (18.1.24.514), a code execution attack is possible through an insecure instantiation vulnerability.
CNA Affected
[
{
"defaultStatus": "unaffected",
"platforms": [
"Windows",
"Linux"
],
"product": "Telerik Reporting",
"vendor": "Progress Software Corporation",
"versions": [
{
"lessThan": "18.1.24.2.514",
"status": "affected",
"version": "1.0.0.0",
"versionType": "semver"
}
]
}
]Related
cve
cve
CVE-2024-4202
2024-05-15 17:15:15
nvd
nvd
CVE-2024-4202
2024-05-15 17:15:15
cvelist
cvelist
CVE-2024-4202 Progress Telerik Reporting Local Instantiation Vulnerability
2024-05-15 16:53:30
nessus
nessus
Progress Telerik Reporting < 2024 Q2 (18.1.24.514) Multiple Vulnerabilities
2024-05-17 00:00:00
7.7 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
7.4 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for VULNRICHMENT:CVE-2024-4202