Lucene search

CVE-2022-27891

🗓️ 16 Feb 2023 16:12:15Reported by PalantirType

Palantir Gotham unauthenticated endpoint vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
Prion	Design/Logic Flaw	16 Feb 202316:15	–	prion
Cvelist	CVE-2022-27891 Palantir Gotham included an unauthenticated endpoint that listed all active usernames in the platform with an active session.	16 Feb 202300:00	–	cvelist
Vulnrichment	CVE-2022-27891 Palantir Gotham included an unauthenticated endpoint that listed all active usernames in the platform with an active session.	16 Feb 202300:00	–	vulnrichment
NVD	CVE-2022-27891	16 Feb 202316:15	–	nvd

Nvd

Node

palantir gothamRange<3.22.10.4

[
  {
    "vendor": "Palantir",
    "product": "Gotham",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "3.22.10.4",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
github	www.github.com/palantir/security-bulletins/blob/main/PLTRSEC-2022-10.md

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Feb 2023 16:15Current

5.5Medium risk

Vulners AI Score5.5

CVSS35.3

EPSS0.0016

SSVC