CVE-2025-53710
Network boundaries not respected in certain Foundry namespaces.
Due to a product misconfiguration in certain deployment types, it was possible from different pods in the same namespace to communicate with each other. This issue resulted in bypass of access control due to the presence of a vulnerable endpoint in Foundry Container Service that executed user-controlled commands locally.
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
Palantir · com.palantir.codeassist2:code-assist-proxyPalantir · com.palantir.compute:compute-serviceWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →