Vulnerabilities > CVE-2024-11629 - Files or Directories Accessible to External Parties vulnerability in Progress Telerik Document Processing Libraries

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
progress
CWE-552

Summary

In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 (2025.1.205), using .NET Standard 2.0, the contents of a file at an arbitrary path can be exported to RTF.

Vulnerable Configurations

Part Description Count
Application
Progress
1