CVE-2025-0556 - Vulnerability Details - OpenCVE

In Progress® Telerik® Report Server, versions prior to 2025 Q1 (11.0.25.211) when using the older .NET Framework implementation, communication of non-sensitive information between the service agent process and app host process occurs over an unencrypted tunnel, which can be subjected to local network traffic sniffing.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Progress	Telerik Report Server

Configuration 1 [-]

cpe:2.3:a:progress:telerik_report_server:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://docs.telerik.com/report-server/knowledge-base/kb-security-cleartext-transmission-cve-2025-0556

History

Thu, 20 Feb 2025 21:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Progress Progress telerik Report Server
CPEs		cpe:2.3:a:progress:telerik_report_server::::::::
Vendors & Products		Progress Progress telerik Report Server

Wed, 12 Feb 2025 15:30:00 +0000

Type	Values Removed	Values Added
Description		In Progress® Telerik® Report Server, versions prior to 2025 Q1 (11.0.25.211) when using the older .NET Framework implementation, communication of non-sensitive information between the service agent process and app host process occurs over an unencrypted tunnel, which can be subjected to local network traffic sniffing.
Title		Telerik Report Server Clear Text Transmission of Agent Commands
Weaknesses		CWE-319
References		https://docs.telerik.com/report-server/knowledge-base/kb-security-cleartext-transmission-cve-2025-0556
Metrics		cvssV3_1 `{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: ProgressSoftware

Published: 2025-02-12T15:11:03.067Z

Updated: 2025-02-12T15:33:35.788Z

Reserved: 2025-01-17T19:39:39.461Z

Link: CVE-2025-0556

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2025-02-12T16:15:43.030

Modified: 2025-02-20T20:41:40.723

Link: CVE-2025-0556

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-0556", "assignerOrgId": "f9fea0b6-671e-4eea-8fde-31911902ae05", "state": "PUBLISHED", "assignerShortName": "ProgressSoftware", "dateReserved": "2025-01-17T19:39:39.461Z", "datePublished": "2025-02-12T15:11:03.067Z", "dateUpdated": "2025-02-12T15:33:35.788Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "modules": [".NET Framework Implementation"], "platforms": ["Windows"], "product": "Telerik Report Server", "vendor": "Progress Software", "versions": [{"lessThan": "2025 Q1 (11.0.25.211)", "status": "affected", "version": "1.0.0", "versionType": "custom"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>In Progress\u00ae Telerik\u00ae Report Server, versions prior to 2025 Q1 (11.0.25.211) when using the older .NET Framework implementation, communication of non-sensitive information between the service agent process and app host process occurs over an unencrypted tunnel, which can be subjected to local network traffic sniffing.</p>"}], "value": "In Progress\u00ae Telerik\u00ae Report Server, versions prior to 2025 Q1 (11.0.25.211) when using the older .NET Framework implementation, communication of non-sensitive information between the service agent process and app host process occurs over an unencrypted tunnel, which can be subjected to local network traffic sniffing."}], "impacts": [{"capecId": "CAPEC-158", "descriptions": [{"lang": "en", "value": "CAPEC-158 Sniffing Network Traffic"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-319", "description": "CWE-319: Cleartext Transmission of Sensitive Information", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "f9fea0b6-671e-4eea-8fde-31911902ae05", "shortName": "ProgressSoftware", "dateUpdated": "2025-02-12T15:11:03.067Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://docs.telerik.com/report-server/knowledge-base/kb-security-cleartext-transmission-cve-2025-0556"}], "source": {"discovery": "INTERNAL"}, "title": "Telerik Report Server Clear Text Transmission of Agent Commands", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-02-12T15:33:21.152666Z", "id": "CVE-2025-0556", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-02-12T15:33:35.788Z"}}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:progress:telerik_report_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "F55B3697-23F9-491C-BD14-2841CD76109A", "versionEndExcluding": "11.0.25.211", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In Progress\u00ae Telerik\u00ae Report Server, versions prior to 2025 Q1 (11.0.25.211) when using the older .NET Framework implementation, communication of non-sensitive information between the service agent process and app host process occurs over an unencrypted tunnel, which can be subjected to local network traffic sniffing."}, {"lang": "es", "value": "En Progress\u00ae Telerik\u00ae Report Server, versiones anteriores a 2025 Q1 (11.0.25.211) cuando se utiliza la implementaci\u00f3n .NET framework m\u00e1s antigua, la comunicaci\u00f3n de informaci\u00f3n no confidencial entre el proceso del agente de servicio y el proceso del host de la aplicaci\u00f3n se produce a trav\u00e9s de un t\u00fanel no cifrado, que puede estar sujeto al rastreo del tr\u00e1fico de la red local."}], "id": "CVE-2025-0556", "lastModified": "2025-02-20T20:41:40.723", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "security@progress.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2025-02-12T16:15:43.030", "references": [{"source": "security@progress.com", "tags": ["Vendor Advisory"], "url": "https://docs.telerik.com/report-server/knowledge-base/kb-security-cleartext-transmission-cve-2025-0556"}], "sourceIdentifier": "security@progress.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-319"}], "source": "security@progress.com", "type": "Primary"}]}