CVE-2022-26665

high

Description

An Insecure Direct Object Reference issue exists in the Tyler Odyssey Portal platform before 17.1.20. This may allow an external party to access sensitive case records.

References

Advisories
More

https://www.judyrecords.com/info

https://www.calbar.ca.gov/About-Us/News/Data-Breach-Updates

https://news.ycombinator.com/item?id=30502117

https://www.tylertech.com/dataharvest

https://www.judyrecords.com/what-happened-with-tyler-technologies

Details

Source: Mitre, NVD

Published: 2022-04-18

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

EPSS

EPSS: 0.00591

Detections

Analytics