CVE-2023-6375— Tyler Technologies Magistrate Court Case Management Plus stores backups insecurely
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2023-6375
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Tyler Technologies Magistrate Court Case Management Plus stores backups insecurely
Source: NVD (National Vulnerability Database)
Vulnerability Description
Tyler Technologies Court Case Management Plus may store backups in a location that can be accessed by a remote, unauthenticated attacker. Backups may contain sensitive information such as database credentials.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
对外部实体的文件或目录可访问
Source: NVD (National Vulnerability Database)
Vulnerability Title
Tyler Technologies Magistrate Court Case Management Plus 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Tyler Technologies Magistrate Court Case Management Plus是Tyler Technologies公司的一个地方法院案件管理系统。 Tyler Technologies Magistrate Court Case Management Plus存在安全漏洞,该漏洞源于将备份存储在未经身份验证的远程攻击者可以访问的位置(备份可能包含数据库凭据等敏感信息)。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Tyler Technologies | Court Case Management Plus | 0 | - |
II. Public POCs for CVE-2023-6375
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2023-6375
请登录查看更多情报信息。
- https://www.cisa.gov/news-events/alerts/2023/11/30/multiple-vulnerabilities-affecting-web-based-court-case-and-document-management-systemsthird-party-advisorygovernment-resource
- https://nvd.nist.gov/vuln/detail/CVE-2023-6375
Same Patch Batch · Tyler Technologies · 2023-11-30 · 6 CVEs total
| CVE-2023-6342 | 5.3 MEDIUM | Tyler Technologies Court Case Management Plus "pay for print" allows authentication bypass |
| CVE-2023-6343 | 5.3 MEDIUM | Tyler Technologies Court Case Management Plus use of Aquaforest TIFF Server tssp.aspx allo |
| CVE-2023-6344 | 5.3 MEDIUM | Tyler Technologies Court Case Management Plus use of Aquaforest TIFF Server te003.aspx and |
| CVE-2023-6353 | 5.3 MEDIUM | Tyler Technologies Civil and Criminal Electronic Filing Upload.aspx allows authentication |
| CVE-2023-6354 | 5.3 MEDIUM | Tyler Technologies Magistrate Court Case Management Plus PDFViewer.aspx allows authenticat |
IV. Related Vulnerabilities
Same vendor: Tyler Technologies
- CVE-2025-55077
Tyler Technologies ERP Pro 9 SaaS application escape - CVE-2023-6354
Tyler Technologies Magistrate Court Case Management Plus PDF - CVE-2023-6353
Tyler Technologies Civil and Criminal Electronic Filing Uplo - CVE-2023-6344
Tyler Technologies Court Case Management Plus use of Aquafor - CVE-2023-6343
Tyler Technologies Court Case Management Plus use of Aquafor
Same weakness: CWE-552
- CVE-2025-7389
Unauthorized Arbitrary File Read via RMI in AdminServer Inte - CVE-2019-25709
CF Image Hosting Script 1.6.5 Unauthorized Database Access - CVE-2026-33698
Chamilo LMS affected by unauthenticated RCE in main/install - CVE-2021-47960
Synology SSL VPN Client 安全漏洞 - CVE-2026-35446
LORIS has a path traversal in FilesDownloadHandler
V. Comments for CVE-2023-6375
No comments yet