A high-severity authentication bypass vulnerability in Akinsoft MyRezzta allows an unauthenticated attacker to gain unauthorized access to the system by circumventing login controls.

The application has an improper restriction of excessive authentication attempts. This suggests a brute-force or credential stuffing attack is possible without rate limiting or account lockout, allowing an attacker to guess passwords or bypass authentication mechanisms entirely.

Rated High with a CVSS score of 8.6, this vulnerability poses a direct threat to the confidentiality and integrity of the data managed by MyRezzta. An unauthenticated attacker could gain administrative access, leading to the compromise of sales data, customer information, and system configurations. This could result in financial loss, fraud, and significant business disruption.

Immediate Action: Apply the vendor-supplied security patch immediately. If a patch is unavailable, restrict access to the application's login interface to trusted IP addresses.

Proactive Monitoring: Monitor authentication logs for a high volume of failed login attempts from a single IP address or for multiple usernames. Alert on any successful logins that occur after a brute-force pattern is detected.

Compensating Controls: Implement a reverse proxy or Web Application Firewall (WAF) in front of the application to enforce rate limiting on the login page. Ensure strong password policies are enforced for all user accounts.

Public Exploit Available: false

An authentication bypass is a critical security failure that must be addressed immediately. Administrators of Akinsoft MyRezzta must prioritize the deployment of the vendor's patch to prevent unauthorized access and potential system compromise. This flaw completely undermines the system's access control model.