Vulnerabilities > CVE-2022-26665 - Authorization Bypass Through User-Controlled Key vulnerability in Tylertech Odyssey Portal
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
An Insecure Direct Object Reference issue exists in the Tyler Odyssey Portal platform before 17.1.20. This may allow an external party to access sensitive case records.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Common Weakness Enumeration (CWE)
References
- https://news.ycombinator.com/item?id=30502117
- https://news.ycombinator.com/item?id=30502117
- https://www.calbar.ca.gov/About-Us/News/Data-Breach-Updates
- https://www.calbar.ca.gov/About-Us/News/Data-Breach-Updates
- https://www.judyrecords.com/info
- https://www.judyrecords.com/info
- https://www.judyrecords.com/what-happened-with-tyler-technologies
- https://www.judyrecords.com/what-happened-with-tyler-technologies
- https://www.tylertech.com/dataharvest
- https://www.tylertech.com/dataharvest