CVE-2024-4358
Progress Telerik Report Server Authentication Bypass by Spoofing Vulnerability
CVSS
—
Sin CVSS
EPSS
97.5%
p100
KEV
SÍ
13 jun 2024
Exploit Today
80
0-100
Publicado: — · Última mod.: —
Producto
Progress / Telerik Report Server
Vulnerabilidad
Progress Telerik Report Server Authentication Bypass by Spoofing Vulnerability
Añadido a KEV
13 jun 2024
Remediar antes de
4 jul 2024
Uso conocido en ransomware
No
Descripción resumida
Progress Telerik Report Server contains an authorization bypass by spoofing vulnerability that allows an attacker to obtain unauthorized access.
Acción requerida
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notas
https://docs.telerik.com/report-server/knowledge-base/registration-auth-bypass-cve-2024-4358; https://nvd.nist.gov/vuln/detail/CVE-2024-4358
Sin CVEs relacionados por CWE o producto.