Apollo Autopilot

DATE	CVE	VULNERABILITY TITLE	RISK
2023-09-27	CVE-2023-30959	Cross-site Scripting vulnerability in Palantir Apollo Autopilot In Apollo change requests, comments added by users could contain a javascript URI link that when rendered will result in an XSS that require user interaction. network low complexity palantir CWE-79	5.4

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.