cbcvebase.
CVE-2024-6327
published 2024-07-24

CVE-2024-6327: In Progress® Telerik® Report Server versions prior to 2024 Q2 (10.1.24.709), a remote code execution attack is possible through an insecure deserialization…

PriorityP265critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
2.00%
78.2th percentile
In Progress® Telerik® Report Server versions prior to 2024 Q2 (10.1.24.709), a remote code execution attack is possible through an insecure deserialization vulnerability.

Affected

2 ranges
VendorProductVersion rangeFixed in
progresstelerik_report_server< 10.1.24.70910.1.24.709
progress_software_corporationtelerik_report_server>= 1.00 < 2024 Q2 (10.1.24.709)2024 Q2 (10.1.24.709)

Detection & IOCsextracted from sources · hover to see the quote

  • The attack vector is insecure deserialization of untrusted data; monitor for anomalous deserialization payloads sent to Telerik Report Server HTTP endpoints
  • ·Temporary mitigation requires changing the Report Server Application Pool user to one with limited permissions; this does not patch the vulnerability but reduces blast radius
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.