43 matches found
Palantir Gotham和Palantir Dossier 安全漏洞
Palantir Gotham and Palantir Dossier are both products of Palantir Corporation, a U.S.-based company.Palantir Gotham is a commercially available, artificial intelligence-enabled operating system.Palantir Dossier is a writing survey and dynamic reporting tool. A security vulnerability exists in...
EUVD-2023-35299
Malicious code in bioql PyPI...
EUVD-2022-32380
Malicious code in bioql PyPI...
EUVD-2022-51006
Malicious code in bioql PyPI...
EUVD-2022-32385
Malicious code in bioql PyPI...
EUVD-2022-32379
Malicious code in bioql PyPI...
CVE-2023-30961
Palantir Gotham was found to be vulnerable to a bug where under certain circumstances, the frontend could have applied an incorrect classification to a newly created property or link...
Palantir Gotham Code Issue Vulnerability
Palantir Gotham is a commercially available, artificial intelligence-enabled operating system from US-based Palantir. Palantir Gotham has a code issue vulnerability that stems from the presence of a vulnerability that can bypass the Content Security Policy CSP and can lead to cross-site scripting...
Palantir Gotham Path Traversal Vulnerability
Palantir Gotham is a commercially available, artificial intelligence-enabled operating system from US-based Palantir. A security vulnerability exists in Palantir Gotham blackbird-witchcraft. An attacker exploiting this vulnerability could read arbitrary files on the file system...
Palantir Gotham video-application-server security vulnerability
Palantir Gotham is a commercially available, artificial intelligence-enabled operating system from US-based Palantir. A security vulnerability exists in the Palantir Gotham video-application-server, which stems from the inclusion of a contention condition that would result in the inability to app...
CVE-2023-30961
Palantir Gotham was found to be vulnerable to a bug where under certain circumstances, the frontend could have applied an incorrect classification to a newly created property or link...
Palantir Security Breach
Palantir is a data platform from US-based Palantir that reimagines how people use data by removing the barriers between back-end data management and front-end data analysis. A security vulnerability exists in Palantir Gotham that stems from the presence of a front-end UI error that causes newly...
CVE-2023-30961 Palantir Gotham UI bug that could lead to incorrect data classification
Palantir Gotham was found to be vulnerable to a bug where under certain circumstances, the frontend could have applied an incorrect classification to a newly created property or link...
CVE-2023-30961 Palantir Gotham UI bug that could lead to incorrect data classification
Palantir Gotham was found to be vulnerable to a bug where under certain circumstances, the frontend could have applied an incorrect classification to a newly created property or link...
PT-2023-23090 · Palantir · Palantir Gotham
Name of the Vulnerable Software and Affected Versions: Palantir Gotham affected versions not specified Description: A bug was discovered in Palantir Gotham where the frontend could apply an incorrect classification to a newly created property or link under certain circumstances. Recommendations: ...
Palantir Gotham Cerberus Cross-Site Scripting Vulnerability
Palantir Gotham Cerberus is a simple Web-based spreadsheet editor from Palantir USA. It has a real-time collaboration feature that validates input against existing data. A security vulnerability exists in the Gotham Cerberus service that stems from the presence of a stored cross-site scripting XS...
CVE-2022-27891
Palantir Gotham included an unauthenticated endpoint that listed all active usernames on the stack with an active session. The affected services have been patched and automatically deployed to all Apollo-managed Gotham instances. It is highly recommended that customers upgrade all affected servic...
CVE-2022-27892
Palantir Gotham versions prior to 3.22.11.2 included an unauthenticated endpoint that would have allowed an attacker to exhaust the memory of the Gotham dispatch service...
CVE-2022-48306
Improper Validation of Certificate with Host Mismatch vulnerability in Gotham Chat IRC helper of Palantir Gotham allows A malicious attacker in a privileged network position could abuse this to perform a man-in-the-middle attack. A successful man-in-the-middle attack would allow them to intercept...
CVE-2022-48306
Improper Validation of Certificate with Host Mismatch vulnerability in Gotham Chat IRC helper of Palantir Gotham allows A malicious attacker in a privileged network position could abuse this to perform a man-in-the-middle attack. A successful man-in-the-middle attack would allow them to intercept...