An information disclosure vulnerability exists in Progress Telerik Report Server, version 2024 Q1 (10.0.24.305) or earlier, allows low-privilege attacker to read systems file via XML External Entity Processing.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ProgressSoftware
Published: 2024-05-15T16:58:31.306Z
Updated: 2024-08-01T20:40:46.481Z
Reserved: 2024-04-30T17:34:36.505Z
Link: CVE-2024-4357
Vulnrichment
Updated: 2024-08-01T20:40:46.481Z
NVD
Status : Awaiting Analysis
Published: 2024-05-15T17:15:15.783
Modified: 2024-11-21T09:42:41.480
Link: CVE-2024-4357
Redhat
No data.