Unrated severityCISA KEVNVD Advisory· Published May 29, 2024· Updated Oct 21, 2025

Registration Authentication Bypass Vulnerability

CVE-2024-4358

Description

In Progress Telerik Report Server, version 2024 Q1 (10.0.24.305) or earlier, on IIS, an unauthenticated attacker can gain access to Telerik Report Server restricted functionality via an authentication bypass vulnerability.

Affected products

Progress Software Corporation/Telerik Report Serverv5
Range: 1.0.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

docs.telerik.com/report-server/knowledge-base/registration-auth-bypass-cve-2024-4358mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.075
exploit	0.030
kev	0.120
patch	0.000
ransomware	0.000