In Visual Studio, I'm getting vulnerability alerts for package 'SQLitePCLRaw.lib.e_sqlite3' which is used by multiple Telerik Products: https://github.com/advisories/GHSA-2m69-gcr7-jv3q
I understand i'm running old version of packages, but i updated to 20.1.26.615 and made no difference.
Lance | Senior Manager Technical Support
Telerik team
commented on 08 Jul 2026, 12:41 PM
Adding an additional comment here for more visibility. This dependency was replaced in today's release, see Release Notes: v20.1.26.707 Once you update to 20.1.26.707 or later, this transitive dependency warning will no longer appear.
While we have not identified an exploitable vector related to this dependency in the context of Telerik Reporting so far, we are planning to address the underlying dependency as part of an upcoming release, currently targeting next week.
Regards,
Lance | Senior Manager Technical Support
Progress Telerik
Adding an additional comment here for more visibility. This dependency was replaced in today's release, see Release Notes: v20.1.26.707 Once you update to 20.1.26.707 or later, this transitive dependency warning will no longer appear.