Vulnerability Details CVE-2024-7293
In Progress® Telerik® Report Server versions prior to 2024 Q3 (10.2.24.806), a password brute forcing attack is possible through weak password requirements.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.1%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2024-7293
-
cpe:2.3:a:progress:telerik_reporting:-
-
cpe:2.3:a:progress:telerik_reporting:10.0.16.113
-
cpe:2.3:a:progress:telerik_reporting:10.0.16.204
-
cpe:2.3:a:progress:telerik_reporting:10.1.16.504
-
cpe:2.3:a:progress:telerik_reporting:10.1.16.615
-
cpe:2.3:a:progress:telerik_reporting:10.1.24.514
-
cpe:2.3:a:progress:telerik_reporting:10.2.16.1025
-
cpe:2.3:a:progress:telerik_reporting:10.2.16.914
-
cpe:2.3:a:progress:telerik_reporting:8.2.14.1027
-
cpe:2.3:a:progress:telerik_reporting:8.2.14.1204
-
cpe:2.3:a:progress:telerik_reporting:9.0.15.225
-
cpe:2.3:a:progress:telerik_reporting:9.0.15.324
-
cpe:2.3:a:progress:telerik_reporting:9.1.15.624
-
cpe:2.3:a:progress:telerik_reporting:9.1.15.731
-
cpe:2.3:a:progress:telerik_reporting:9.2.15.1105
-
cpe:2.3:a:progress:telerik_reporting:9.2.15.1126
-
cpe:2.3:a:progress:telerik_reporting:9.2.15.930