Hello.
As far as I know, the last version of Telerik JustDecompile is "2024.1.131.0". Is version 2024.1.131.0 free from CVE-2024-0219? And is it a version after 2024 R1?
CVE-2024-0219
In Telerik JustDecompile versions prior to 2024 R1, a privilege elevation vulnerability has been identified in the applications installer component. In an environment where an existing Telerik JustDecompile install is present, a lower privileged user has the ability to manipulate the installation package to elevate their privileges on the underlying operating system.
1 Answer, 1 is accepted
Hi Sungmin,
Thank you for reaching out to us.
I can confirm that the last available version of Telerik JustDecompile is "2024.1.131.0". There is no other version after this one. You can safely use this version as it does not contain any known vulnerabilities.
Regards,
Dinko | Tech Support Engineer
Progress Telerik
Love the Telerik and Kendo UI products and believe more people should try them? Invite a fellow developer to become a Progress customer and each of you can get a $50 Amazon gift voucher.