Vulnerabilities > CVE-2019-10231 - Type Confusion vulnerability in Teclib-Edition Gestionnaire Libre DE Parc Informatique
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerability allowing bypass of authentication. This occurs in Auth::checkPassword() (inc/auth.class.php).
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |