What the vulnerability does
01Description
Authentication Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Tuturn allows Authentication Abuse.This issue affects Tuturn: from n/a before 3.6.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
What the vulnerability does
Authentication Bypass Using an Alternate Path or Channel vulnerability in AmentoTech Tuturn allows Authentication Abuse.This issue affects Tuturn: from n/a before 3.6.
Explanation of Vulnerability in Simple Terms
Tuturn versions before 3.6 contain an authentication bypass vulnerability. An attacker can gain unauthorized access to the application without valid credentials. The vulnerability affects all confidentiality, integrity, and availability of the system. Update to version 3.6 or later immediately.
What an attacker can do
Gain full unauthorized access to the application without credentials.
Potential impact on your site
Complete compromise of Tuturn installation; attacker can read, modify, or delete all data.
Conditions required to exploit
Network access only; no authentication or user interaction required.
Key dates
External resources
Related vulnerabilities