CVE-2023-6354

Summary

Tyler Technologies Magistrate Court Case Management Plus allows an unauthenticated, remote attacker to upload, delete, and view files by manipulating the PDFViewer.aspx 'filename' parameter.

Affected Software

VendorProductVersion RangeStatus
Tyler TechnologiesMagistrate Court Case Management Plus0affected

Weaknesses

  • CWE-287: CWE-287 Improper Authentication

ADP Enrichment

CVE Program Container

Additional References

References