CVE-2023-6343

Name of the Vulnerable Software and Affected Versions Tyler Technologies Court Case Management Plus (affected versions not specified)

Description The issue concerns insufficient permission checks in public court record platforms, allowing unauthorized access to sealed, confidential, and unreleased records. A remote, unauthenticated attacker can enumerate and access sensitive files using the tiffserver/tssp.aspx endpoint with the FN parameter.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.