What the vulnerability does
01Description
Authentication Bypass Using an Alternate Path or Channel vulnerability in Arraytics Timetics timetics allows Authentication Abuse.This issue affects Timetics: from n/a through <= 1.0.46.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
What the vulnerability does
Authentication Bypass Using an Alternate Path or Channel vulnerability in Arraytics Timetics timetics allows Authentication Abuse.This issue affects Timetics: from n/a through <= 1.0.46.
Explanation of Vulnerability in Simple Terms
Timetics versions up to 1.0.46 contain an authentication bypass vulnerability that allows an attacker with low-level privileges to read, modify, or delete sensitive data and disrupt service availability. The vulnerability stems from improper authentication handling and can be exploited over the network without user interaction. Update to version 1.0.47 or later to remediate.
What an attacker can do
Read, modify, or delete data; disrupt service availability.
Potential impact on your site
Unauthorized data access, modification, or loss; potential service downtime.
Conditions required to exploit
Low-level user account on the system; network access.
Key dates
External resources
Related vulnerabilities