Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2024-11-13	CVE-2024-7295	Use of Hard-coded Credentials vulnerability in Progress Telerik Report Server In Progress® Telerik® Report Server versions prior to 2024 Q4 (10.3.24.1112), the encryption of local asset data used an older algorithm which may allow a sophisticated actor to decrypt this information. local low complexity progress CWE-798	6.2
2024-05-15	CVE-2024-4837	Unspecified vulnerability in Progress Telerik Report Server In Progress Telerik Report Server, version 2024 Q1 (10.0.24.305) or earlier, on IIS, an unauthenticated attacker can gain access to Telerik Report Server restricted functionality via a trust boundary violation vulnerability. network low complexity progress	5.3