How severe is CVE-2024-4200?

CVE-2024-4200 has a CVSS v3 score of 7.7 (HIGH).

CVE-2024-4200

Name: telerik_reporting
Author: progress

7.7HIGH

In Progress® Telerik® Reporting versions prior to 2024 Q2 (18.1.24.2.514), a code execution attack is possible by a local threat actor through an insecure deserialization vulnerability.

发布于: 5/15/2024更新于: 1/16/2025

描述

In Progress® Telerik® Reporting versions prior to 2024 Q2 (18.1.24.2.514), a code execution attack is possible by a local threat actor through an insecure deserialization vulnerability.

AI分析AI驱动

受影响产品

progresstelerik_reporting

参考资料

https://docs.telerik.com/reporting/knowledge-base/deserialization-vulnerability-cve-2024-4200
Vendor Advisory
https://docs.telerik.com/reporting/knowledge-base/deserialization-vulnerability-cve-2024-4200
Vendor Advisory