3 matches found
CVE-2022-27897 Palantir Gotham included an endpoint that would log arbitrary sized zip files.
Palantir Gotham versions prior to 3.22.11.2 included an unauthenticated endpoint that would load portions of maliciously crafted zip files to memory. An attacker could repeatedly upload a malicious zip file, which would allow them to exhaust memory resources on the dispatch server...
CVE-2022-27897 Palantir Gotham included an endpoint that would log arbitrary sized zip files.
Palantir Gotham versions prior to 3.22.11.2 included an unauthenticated endpoint that would load portions of maliciously crafted zip files to memory. An attacker could repeatedly upload a malicious zip file, which would allow them to exhaust memory resources on the dispatch server...
CVE-2022-27897
Palantir Gotham versions prior to 3.22.11.2 expose an unauthenticated endpoint that loads portions of maliciously crafted ZIP files into memory, enabling an attacker to repeatedly upload ZIPs and exhaust memory on the dispatch server. Affected software: Palantir Gotham before 3.22.11.2. Root caus...