Primary

Context

Tyler Technologies ERP Pro 9 SaaS Application Escape Vulnerability

Vulnerability

A vulnerability in Tyler Technologies ERP Pro 9 SaaS allows authenticated users to escape the application environment and execute limited operating system commands in the remote Microsoft Windows environment. This execution occurs with the privileges of the authenticated user. As of August 1, 2025, Tyler Technologies has implemented enhanced security settings in the Windows environment for all ERP Pro 9 SaaS customers.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of operating system commands, potentially allowing for further exploitation or manipulation of the user's environment.

Remediation

Tyler Technologies has deployed hardened remote Windows environment settings to all ERP Pro 9 SaaS customer environments as of August 1, 2025.

Added: Aug 7, 2025, 7:20 PM

Updated: Aug 7, 2025, 10:00 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

8.1

exploitability

5.2

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

8.1

exploitability

5.2

remediation

0.0

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tyler Technologies ERP Pro 9 SaaS Application Escape Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating