CVE-2024-1801 Information

Description

In Progress® Telerik® Reporting versions prior to 2024 Q1 (18.0.24.130) a code execution attack is possible by a local threat actor through an insecure deserialization vulnerability.

Reference

https://www.telerik.com/products/reporting.aspx https://docs.telerik.com/reporting/knowledge-base/deserialization-vulnerability-cve-2024-1801-cve-2024-1856