Vulnerabilities > CVE-2023-30956 - Unspecified vulnerability in Palantir Foundry Comments
Attack vector
NETWORK Attack complexity
HIGH Privileges required
LOW Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
A security defect was identified in Foundry Comments that enabled a user to discover the contents of an attachment submitted to another comment if they knew the internal UUID of the target attachment. This defect was resolved with the release of Foundry Comments 2.267.0.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |