2 matches found
CVE-2023-6344 Tyler Technologies Court Case Management Plus use of Aquaforest TIFF Server te003.aspx and te004.aspx allows authentication bypass
Tyler Technologies Court Case Management Plus allows a remote, unauthenticated attacker to enumerate directories using the tiffserver/te003.aspx or te004.aspx 'ifolder' parameter. This behavior is related to the use of a deprecated version of Aquaforest TIFF Server, possibly 2.x. The vulnerable...
CVE-2023-6344
CVE-2023-6344 affects Tyler Technologies Court Case Management Plus and involves directory enumeration via the tiffserver/te003.aspx or te004.aspx 'ifolder' parameter. The underlying root cause is tied to a deprecated Aquaforest TIFF Server version (likely 2.x); the vulnerable TIFF Server feature...