← back
CVE-2022-27895

A component in Foundry logging was found to be capturing sensitive information in logs.

CVSS 4.2 MEDIUMEPSS 0.4%CWE-532
Information Exposure Through Log Files vulnerability discovered in Foundry when logs were captured using an underlying library known as Build2. This issue was present in versions earlier than 1.785.0. Upgrade to Build2 version 1.785.0 or greater.
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N
Affected products
Palantir · Foundry Build2

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/palantir/security-bulletins/blob/main/PLTRSEC-2022-06.md