PT-2022-17995 · Tyler · Tyler Odyssey Portal
Published
2022-04-18
·
Updated
2022-09-03
·
CVE-2022-26665
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Tyler Odyssey Portal platform versions prior to 17.1.20
Description
An Insecure Direct Object Reference issue exists in the Tyler Odyssey Portal platform. This may allow an external party to access sensitive case records.
Recommendations
For versions prior to 17.1.20, update to version 17.1.20 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive case records until the update is applied.
Exploit
Fix
IDOR
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tyler Odyssey Portal