In Telerik JustDecompile versions prior to 2024 R1, a privilege elevation vulnerability has been identified in the applications installer component.  In an environment where an existing Telerik JustDecompile install is present, a lower privileged user has the ability to manipulate the installation package to elevate their privileges on the underlying operating system.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: ProgressSoftware

Published: 2024-01-31T15:11:21.337Z

Updated: 2024-08-01T17:41:16.427Z

Reserved: 2024-01-03T15:32:48.849Z

Link: CVE-2024-0219

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2024-01-31T16:15:45.290

Modified: 2024-11-21T08:46:05.290

Link: CVE-2024-0219

cve-icon Redhat

No data.