9.5 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
61.8%
Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerability allowing bypass of authentication. This occurs in Auth::checkPassword() (inc/auth.class.php).
github.com/glpi-project/glpi/pull/5520
github.com/glpi-project/glpi/releases/tag/9.4.1.1