Vulnerabilities > CVE-2024-0833 - Unspecified vulnerability in Progress Telerik Test Studio 2023.3.1115

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

progress

NVD

Published: 2024-01-31

Updated: 2024-10-17

Summary

In Telerik Test Studio versions prior to v2023.3.1330, a privilege elevation vulnerability has been identified in the applications installer component. In an environment where an existing Telerik Test Studio install is present, a lower privileged user has the ability to manipulate the installation package to elevate their privileges on the underlying operating system.

Vulnerable Configurations

Part	Description	Count
Application	Progress Progress Telerik Test Studio - Progress Telerik Test Studio 2023.3.1115	2

References

https://docs.telerik.com/teststudio/knowledge-base/product-notices-kb/legacy-installer-vulnerability
https://www.telerik.com/teststudio