Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Unsafe Deserialization Vulnerability
Vulnerability Description
In Progress® Telerik® Reporting versions prior to 18.1.24.709, a code execution attack is possible through object injection via an insecure type resolution vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
使用外部可控制的输入来选择类或代码(不安全的反射)
Vulnerability Title
Progress Software Telerik Reporting 安全漏洞
Vulnerability Description
Progress Software Telerik Reporting是美国Progress Software公司的一款 .NET/.NET Framework 嵌入式报告工具。 Progress Software Telerik Reporting 18.1.24.709之前版本存在安全漏洞,该漏洞源于可能通过不安全的类型解析漏洞通过对象注入进行代码执行攻击。
CVSS Information
N/A
Vulnerability Type
N/A