CVE-2023-30961
6.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Summary
Palantir Gotham was found to be vulnerable to a bug where under certain circumstances, the frontend could have applied an incorrect classification to a newly created property or link.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Palantir | com.palantir.acme:gotham-fe-bundle | * < 100.30230706.22 | affected |
| Palantir | com.palantir.acme:gotham-fe-bundle | 100.30230702.0 < * | affected |
| Palantir | com.palantir.acme:gotham-fe-bundle | * < 100.30230702.24 | affected |
| Palantir | com.palantir.acme:gotham-fe-bundle | * < 100.30230704.15 | affected |
| Palantir | com.palantir.acme:titanium-browser-app-bundle | 100.30230706.20 | affected |
Weaknesses
- CWE-710: The product does not follow certain coding rules for development, which can lead to resultant weaknesses or increase the severity of the associated vulnerabilities.
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.