2 matches found
CVE-2022-27892 Palantir Gotham included an endpoint that would log arbitrary sized payloads.
Palantir Gotham versions prior to 3.22.11.2 included an unauthenticated endpoint that would have allowed an attacker to exhaust the memory of the Gotham dispatch service...
CVE-2022-27892
Palantir Gotham versions prior to 3.22.11.2 are affected by an unauthenticated endpoint that can exhaust the Gotham dispatch service memory. The issue is triggered by an endpoint that accepts unvalidated input to log or process arbitrary payloads, enabling memory exhaustion on the Gotham dispatch...