Telerik Reporting

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:progress:telerik_reporting:1.0.0.0:*:*:*:*:*:*:*

part: a version: 1.0.0.0 update: *

VendorProgress (f9d80521-f73f-5a85-8df9-9306f2f67809)
ProductTelerik Reporting (a2d1ede4-603b-5a0e-ba20-3445a1fc99ff)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2024-6096 vulnerable 2026-06-03 14:58:01.855302 Unsafe Deserialization Vulnerability
HIGH (8.8)
In Progress® Telerik® Reporting versions prior to 18.1.24.709, a code execution attack is possible through object injection via an insecure type resolution vulnerability.
Published: 2024-07-24T14:00:19.107Z
Updated: 2025-04-25T23:02:56.247Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-4837 vulnerable 2026-06-03 14:57:16.291802 Trust Boundary Violation Vulnerability
MEDIUM (5.3)
In Progress Telerik Report Server, version 2024 Q1 (10.0.24.305) or earlier, on IIS, an unauthenticated attacker can gain access to Telerik Report Server restricted functionality via a trust boundary violation vulnerability.
Published: 2024-05-15T17:04:05.705Z
Updated: 2024-08-01T20:55:09.990Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-4202 vulnerable 2026-06-03 14:57:14.925477 Progress Telerik Reporting Local Instantiation Vulnerability
HIGH (7.7)
In Progress® Telerik® Reporting versions prior to 2024 Q2 (18.1.24.514), a code execution attack is possible through an insecure instantiation vulnerability.
Published: 2024-05-15T16:53:30.262Z
Updated: 2024-08-01T20:33:52.951Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.