Vulnerabilidades em Palantir
47 resultadosCVE-2022-27889MEDIUMThe Foundry Multipass service contains code paths that could be abused to cause a denial of service for authentication and authorization operations.EPSS 0.9%CVE-2022-27892MEDIUMPalantir Gotham included an endpoint that would log arbitrary sized payloads. EPSS 0.6%CVE-2023-30967CRITICALGotham Orbital Simulator path traversalEPSS 0.6%CVE-2022-27897MEDIUMPalantir Gotham included an endpoint that would log arbitrary sized zip files. EPSS 0.6%CVE-2023-30945CRITICALCVE-2023-30945 EPSS 0.6%CVE-2023-22835HIGHDenial of Service in Foundry IssuesEPSS 0.6%CVE-2023-30970MEDIUMGotham table and Forward App Path traversalEPSS 0.5%CVE-2023-30948MEDIUMRetrieval of Attachments to Comments lacks AuthorizationEPSS 0.5%CVE-2024-49589MEDIUMFoundry artifacts denial of serviceEPSS 0.5%CVE-2023-30968MEDIUMStored XSS in gaiaEPSS 0.5%CVE-2022-27891MEDIUMPalantir Gotham included an unauthenticated endpoint that listed all active usernames in the platform with an active session. EPSS 0.4%CVE-2023-22833HIGHMandatory control bypass in Lime2EPSS 0.4%CVE-2023-30956MEDIUMIDOR in Foundry Comments allows retrieval of attachmentsEPSS 0.4%CVE-2023-30951MEDIUMCVE-2023-30951 EPSS 0.4%CVE-2022-27895MEDIUMA component in Foundry logging was found to be capturing sensitive information in logs.EPSS 0.4%CVE-2023-30969HIGHPalantir Tiles missing authentication on API endpointsEPSS 0.4%CVE-2022-27896MEDIUMThe Foundry Code-Workbooks service was found to contain an issue leading to information disclosure.EPSS 0.4%CVE-2025-68609MEDIUMAuthentication bypass in Aries due to misconfigurationEPSS 0.4%CVE-2023-30952MEDIUMFoundry Issues reporterPath phishing by parameter injectionEPSS 0.4%CVE-2024-49581MEDIUMAccess control issue impacting RV backed objectsEPSS 0.4%