Unrated severityNVD Advisory· Published Jan 31, 2024· Updated Aug 23, 2024

Privilege Elevation via Telerik Reporting Installer

CVE-2024-0832

Description

In Telerik Reporting versions prior to 2024 R1, a privilege elevation vulnerability has been identified in the applications installer component. In an environment where an existing Telerik Reporting install is present, a lower privileged user has the ability to manipulate the installation package to elevate their privileges on the underlying operating system.

Affected products

Process Software/Telerik Reportingv5
Range: 1.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

docs.telerik.com/reporting/knowledge-base/legacy-installer-vulnerabilitymitrevendor-advisory
www.telerik.com/products/reporting.aspxmitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000