We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Assigner | ProgressSoftware |
Reserved | 2024-06-17 |
Published | 2024-07-24 |
Updated | 2024-08-01 |
In Progress® Telerik® Reporting versions prior to 18.1.24.709, a code execution attack is possible through object injection via an insecure type resolution vulnerability.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
CWE-470 Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')
Markus Wulftange with CODE WHITE GmbH
https://docs.telerik.com/reporting/knowledge-base/unsafe-reflection-CVE-2024-6096