{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-10T06:09:38.340","vulnerabilities":[{"cve":{"id":"CVE-2024-7295","sourceIdentifier":"security@progress.com","published":"2024-11-13T16:15:20.960","lastModified":"2024-11-18T17:41:49.787","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"In Progress® Telerik® Report Server versions prior to 2024 Q4 (10.3.24.1112), the encryption of local asset data used an older algorithm which may allow a sophisticated actor to decrypt this information."},{"lang":"es","value":"En las versiones de In Progress® Telerik® Report Server anteriores al cuarto trimestre de 2024 (10.3.24.1112), el cifrado de datos de activos locales utilizaba un algoritmo más antiguo que puede permitir que un actor sofisticado descifre esta información."}],"metrics":{"cvssMetricV31":[{"source":"security@progress.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.5,"impactScore":4.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N","baseScore":6.2,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.5,"impactScore":3.6}]},"weaknesses":[{"source":"security@progress.com","type":"Secondary","description":[{"lang":"en","value":"CWE-798"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:progress:telerik_report_server:*:*:*:*:*:*:*:*","versionEndExcluding":"10.3.24.1112","matchCriteriaId":"584D7CE9-ED26-49FA-A27F-B3B171A86AB0"}]}]}],"references":[{"url":"https://docs.telerik.com/report-server/knowledge-base/encryption-weakness-cve-2024-7295","source":"security@progress.com","tags":["Vendor Advisory"]}]}}]}