Description
In Progress Telerik Report Server, version 2024 Q1 (10.0.24.305) or earlier, an unauthenticated attacker can exploit an authentication bypass vulnerability to gain access to restricted functionality. This vulnerability allows attackers to bypass the authentication mechanisms and potentially manipulate or exfiltrate sensitive data from the Report Server.
Remediation
Update to Report Server 2024 Q2 (10.1.24.514) or later to mitigate this vulnerability.