CVE-2024-0832

Name of the Vulnerable Software and Affected Versions Telerik Reporting versions prior to 2024 R1

Description A privilege elevation vulnerability has been identified in the application's installer component. In an environment where an existing Telerik Reporting install is present, a lower privileged user has the ability to manipulate the installation package to elevate their privileges on the underlying operating system.

Recommendations For versions prior to 2024 R1, update to version 2024 R1 or later to resolve the issue. As a temporary workaround, consider restricting access to the installer component to minimize the risk of exploitation.