CVE-2025-53710

Summary

Due to a product misconfiguration in certain deployment types, it was possible from different pods in the same namespace to communicate with each other. This issue resulted in bypass of access control due to the presence of a vulnerable endpoint in Foundry Container Service that executed user-controlled commands locally.

Affected Software

VendorProductVersion RangeStatus
Palantircom.palantir.compute:compute-service0.1372.0 < *unaffected
Palantircom.palantir.codeassist2:code-assist-proxy2.1289.0 < *unaffected

Weaknesses

  • CWE-653: The product does not properly compartmentalize or isolate functionality, processes, or resources that require different privilege levels, rights, or permissions.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References