CVE-2022-27888

Summary

Foundry Issues service versions 2.244.0 to 2.249.0 was found to be logging in a manner that captured sensitive information (session tokens). This issue was fixed in 2.249.1.

Affected Software

VendorProductVersion RangeStatus
PalantirFoundry Issuesunspecified <= 2.249.0affected
PalantirFoundry Issuesnext of 2.244.0 < unspecifiedaffected

Weaknesses

  • CWE-532: CWE-532 Information Exposure Through Log Files

ADP Enrichment

CVE Program Container

Additional References

References