Telerik Report Server Security Update Advisory (CVE-2024-8015)

Oct 16 2024

Overview

An update has been released to address vulnerabilities in Telerik Report Server. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-8015

Telerik Report Server versions: ~ 2024 Q3 (10.2.24.806) (inclusive)

Resolved Vulnerabilities

Object injection via insecure type checking vulnerability in Telerik Report Server allows remote code execution attacks (CVE-2024-8015)

Vulnerability Patches

The following product-specific vulnerability patches have been made available in the latest update. If you are using an affected version, Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-8015

Telerik Report Server version: 2024 Q3 (10.2.24.924)

References

[1] CVE-2024-8015 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-8015

[2] Insecure Type Resolution Vulnerability

https://docs.telerik.com/report-server/knowledge-base/insecure-type-resolution-cve-2024-8015

Telerik Report Server Security Update Advisory (CVE-2024-8015)

Btcd Security Update Advisory (CVE-2024-38365)

Mozilla Products October 2024 1st Security Update Advisory

Tags:

Btcd Security Update Advisory (CVE-2024-38365)

Mozilla Products October 2024 1st Security Update Advisory