CVE-2025-62487 Under certain configurations, file artifacts uploaded to the Dossier and Slides apps did not inherit security markings of their parent artifact. This lack of security markings could lead to unintended access to the uploaded files.

🗓️ 09 Jan 2026 21:17:37Reported by PalantirType

CVE-2025-62487: Dossier and Slides uploads may not inherit security markings without access controls, risking unintended access.

Reporter	Title	Published	Views	Family All 8
ATTACKERKB	CVE-2025-62487	9 Jan 202621:17	–	attackerkb
CNNVD	Palantir Gotham和Palantir Dossier 安全漏洞	9 Jan 202600:00	–	cnnvd
CVE	CVE-2025-62487	9 Jan 202621:17	–	cve
EUVD	EUVD-2025-206271	10 Jan 202600:30	–	euvd
NVD	CVE-2025-62487	9 Jan 202622:16	–	nvd
Positive Technologies	PT-2026-1839	9 Jan 202600:00	–	ptsecurity
RedhatCVE	CVE-2025-62487	13 Jan 202622:53	–	redhatcve
Vulnrichment	CVE-2025-62487 Under certain configurations, file artifacts uploaded to the Dossier and Slides apps did not inherit security markings of their parent artifact. This lack of security markings could lead to unintended access to the uploaded files.	9 Jan 202621:17	–	vulnrichment

[
  {
    "vendor": "Palantir",
    "product": "com.palantir.acme:gotham-default-apps-bundle",
    "versions": [
      {
        "versionType": "semver",
        "version": "100.30251002.0",
        "lessThan": "*",
        "status": "unaffected"
      },
      {
        "version": "100.30250808.87",
        "status": "unaffected"
      },
      {
        "version": "100.30250908.1",
        "status": "unaffected"
      },
      {
        "versionType": "semver",
        "version": "100.30250502.0",
        "lessThan": "100.30251002.0",
        "status": "affected"
      },
      {
        "version": "100.30250709.54",
        "status": "unaffected"
      },
      {
        "version": "100.30250907.11",
        "status": "unaffected"
      },
      {
        "version": "100.30250507.88",
        "status": "unaffected"
      },
      {
        "version": "100.30251001.1",
        "status": "unaffected"
      },
      {
        "version": "*",
        "versionType": "semver",
        "lessThan": "100.30250502.0",
        "status": "unaffected"
      },
      {
        "version": "100.30250906.52",
        "status": "unaffected"
      }
    ]
  },
  {
    "vendor": "Palantir",
    "product": "com.palantir.acme:stencil-app-bundle",
    "versions": [
      {
        "version": "100.30250907.11",
        "status": "unaffected"
      },
      {
        "version": "100.30250507.88",
        "status": "unaffected"
      },
      {
        "version": "100.30250908.1",
        "status": "unaffected"
      },
      {
        "version": "100.30250808.87",
        "status": "unaffected"
      },
      {
        "versionType": "semver",
        "version": "100.30251002.0",
        "lessThan": "*",
        "status": "unaffected"
      },
      {
        "version": "100.30251001.1",
        "status": "unaffected"
      },
      {
        "version": "*",
        "versionType": "semver",
        "lessThan": "100.30250502.0",
        "status": "unaffected"
      },
      {
        "version": "100.30250906.52",
        "status": "unaffected"
      },
      {
        "versionType": "semver",
        "version": "100.30250502.0",
        "lessThan": "100.30251002.0",
        "status": "affected"
      },
      {
        "version": "100.30250709.54",
        "status": "unaffected"
      }
    ]
  },
  {
    "vendor": "Palantir",
    "product": "com.palantir.acme:dossier-app",
    "versions": [
      {
        "version": "100.30250907.11",
        "status": "unaffected"
      },
      {
        "versionType": "semver",
        "version": "100.30250502.0",
        "lessThan": "100.30251002.0",
        "status": "affected"
      },
      {
        "version": "100.30251001.1",
        "status": "unaffected"
      },
      {
        "version": "100.30250808.87",
        "status": "unaffected"
      },
      {
        "version": "*",
        "versionType": "semver",
        "lessThan": "100.30250502.0",
        "status": "unaffected"
      },
      {
        "version": "100.30250908.1",
        "status": "unaffected"
      },
      {
        "version": "100.30250709.54",
        "status": "unaffected"
      },
      {
        "versionType": "semver",
        "version": "100.30251002.0",
        "lessThan": "*",
        "status": "unaffected"
      },
      {
        "version": "100.30250507.88",
        "status": "unaffected"
      },
      {
        "version": "100.30250906.52",
        "status": "unaffected"
      }
    ]
  }
]

Source	Link
palantir	www.palantir.safebase.us/

14 Jan 2026 19:10Current

CVSS 3.13.5

EPSS0.00196

CWE-863