all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Telerik Report Server Flaw Could Let Attackers Create Rogue Admin Accounts

Add to bookmarks
June 4, 2024, 2:43 p.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Progress Software has rolled out updates to address a critical security flaw impacting the Telerik Report Server that could be potentially exploited by a remote attacker to bypass authentication and create rogue administrator users.
The issue, tracked as CVE-2024-4358, carries a CVSS score of 9.8 out of a maximum of 10.0.
"In Progress Telerik Report Server, version 2024 Q1 (10.0.24.305) or

accounts address admin administrator attacker attackers authentication bypass critical cve cve-2024 cve-2024-4358 cvss cvss score exploited flaw issue progress progress software report rogue rogue admin score security security flaw server software telerik updates

Visit resource

More from thehackernews.com / The Hacker News

Chinese and N. Korean Hackers Target Global Infrastructure with Ransomware 5 hours ago | thehackernews.com
attacks china chinese cluster +20
Practical Guidance For Securing Your Software Supply Chain 5 hours ago | thehackernews.com
attackers attacks guidance integrity +15
Apple Patches AirPods Bluetooth Vulnerability That Could Allow Eavesdropping 5 hours ago | thehackernews.com
access actor apple apple patches +15
New Credit Card Skimmer Targets WordPress, Magento, and OpenCart Sites 6 hours ago | thehackernews.com
caesar called card cipher +23
New Medusa Android Trojan Targets Banking Users Across 7 Countries 7 hours ago | thehackernews.com
android android banking trojan android trojan banking +20
Over 110,000 Websites Affected by Hijacked Polyfill Supply Chain Attack 10 hours ago | thehackernews.com
ads attack block chinese +16
New Attack Technique Exploits Microsoft Management Console Files 1 day, 4 hours ago | thehackernews.com
artifact attack code code execution +20
How to Cut Costs with a Browser Security Platform 1 day, 5 hours ago | thehackernews.com
browser browser extensions browser security data +23
New Cyberthreat 'Boolka' Deploying BMANAGER Trojan via SQLi Attacks 1 day, 5 hours ago | thehackernews.com
actor attacks campaign countries +17

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Technology Specialist I: Windows Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, California
View on infosec-jobs.com

Information Technology Specialist I, LACERA: Information Security Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
View on infosec-jobs.com

Vice President, Controls Design & Development-7

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Vice President, Controls Design & Development-5

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Data Scientist & AI Prompt Engineer

@ Varonis | Israel
View on infosec-jobs.com

Contractor

@ Birlasoft | INDIA - MUMBAI - BIRLASOFT OFFICE, IN
View on infosec-jobs.com