Progress Software has released a notice to highlight a critical vulnerability in its Telerik Report Server product. It has cautioned that the vulnerability has the potential for remote code execution (RCE). Attackers from remote locations could take advantage of the vulnerability to insert harmful objects by deserializing untrusted data and run unauthorized code on the server.
The exploitation of the vulnerability does not necessitate authentication for success. Progress has resolved the issue in Telerik Report Server version 2024 Q2 (10.1.24.709) and advises users to promptly update their deployments.
Read More: Progress Patches Critical Telerik Report Server Vulnerability
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.