CVE-2023-6342

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 30, 2023

Updated: Dec 6, 2023

CWE ID 287

Summary

CVE-2023-6342 is a vulnerability affecting Tyler Technologies' Court Case Management Plus software. An attacker can exploit this issue by manipulating the 'CmWebSearchPfp/Login.aspx' and 'payforprint_CM/Redirector.ashx' parameters to authenticate as any user remotely. This vulnerability was related to the "pay for print" feature, which was removed from the software on or around November 1, 2023.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tlr-6q
https://www.cve.org/CVERecord?id=CVE-2023-6342
https://nvd.nist.gov/vuln/detail/CVE-2023-6342

Back to Vulnerability Database

CVE-2023-6342

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations