CVE-2023-30950

Summary

The foundry campaigns service was found to be vulnerable to an unauthenticated information disclosure in a rest endpoint

Affected Software

VendorProductVersion RangeStatus
Palantircom.palantir.campaigns:campaigns* < 0.623.0affected

Weaknesses

  • CWE-290: This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References