In Progress Telerik Report Server, version 2024 Q1 (10.0.24.305) or earlier, on IIS, an unauthenticated attacker can gain access to Telerik Report Server restricted functionality via an authentication bypass vulnerability.
https://www.helpnetsecurity.com/2024/07/26/cve-2024-6327/
https://docs.telerik.com/report-server/knowledge-base/registration-auth-bypass-cve-2024-4358