VYPR
Vendor

Palace

Products
25
CVEs
34
Across products
37
Status
Private

Products

25

Recent CVEs

34
View all 34 CVEs →
  • CVE-2024-49587CriDec 19, 2025
    risk 0.59cvss 9.1epss 0.00

    Glutton V1 service endpoints were exposed without any authentication on Gotham stacks, this could have allowed users that did not have any permission to hit glutton backend directly and read/update/delete data. The affected service has been patched and automatically deployed to…

  • CVE-2023-30969HigOct 26, 2023
    risk 0.53cvss 8.2epss 0.00

    The Palantir Tiles1 service was found to be vulnerable to an API wide issue where the service was not performing authentication/authorization on all the endpoints.

  • CVE-2023-22835HigJul 10, 2023
    risk 0.50cvss 7.7epss 0.01

    A security defect was identified that enabled a user of Foundry Issues to perform a Denial of Service attack by submitting malformed data in an Issue that caused loss of frontend functionality to all issue participants. This defect was resolved with the release of Foundry…

  • CVE-2025-53710HigDec 18, 2025
    risk 0.49cvss 7.5epss 0.00

    Due to a product misconfiguration in certain deployment types, it was possible from different pods in the same namespace to communicate with each other. This issue resulted in bypass of access control due to the presence of a vulnerable endpoint in Foundry Container Service that…

  • CVE-2023-22833HigJun 6, 2023
    risk 0.49cvss 7.6epss 0.00

    Palantir Foundry deployments running Lime2 versions between 2.519.0 and 2.532.0 were vulnerable a bug that allowed authenticated users within a Foundry organization to bypass discretionary or mandatory access controls under certain circumstances.

  • CVE-2024-49588MedNov 21, 2024
    risk 0.44cvss 6.8epss 0.00

    Multiple endpoints in `oracle-sidecar` in versions 0.347.0 to 0.543.0 were found to be vulnerable to SQL injections.

  • CVE-2023-30968MedMar 12, 2024
    risk 0.44cvss 6.8epss 0.00

    One of Gotham Gaia services was found to be vulnerable to a stored cross-site scripting (XSS) vulnerability that could have allowed an attacker to bypass CSP and get a persistent cross site scripting payload on the stack.

  • CVE-2023-30970MedJan 29, 2024
    risk 0.42cvss 6.5epss 0.01

    Gotham Table service and Forward App were found to be vulnerable to a Path traversal issue allowing an authenticated user to read arbitrary files on the file system.

  • CVE-2023-30961MedSep 27, 2023
    risk 0.42cvss 6.5epss 0.00

    Palantir Gotham was found to be vulnerable to a bug where under certain circumstances, the frontend could have applied an incorrect classification to a newly created property or link.

  • CVE-2023-30948MedJun 6, 2023
    risk 0.42cvss 6.5epss 0.01

    A security defect in Foundry's Comments functionality resulted in the retrieval of attachments to comments not being gated by additional authorization checks. This could enable an authenticated user to inject a prior discovered attachment UUID into other arbitrary comments to…

  • CVE-2023-30951MedAug 3, 2023
    risk 0.41cvss 6.3epss 0.00

    The Foundry Magritte plugin rest-source was found to be vulnerable to an an XML external Entity attack (XXE).

  • CVE-2022-48308MedFeb 16, 2023
    risk 0.41cvss 6.3epss 0.00

    It was discovered that the sls-logging was not verifying hostnames in TLS certificates due to a misuse of the javax.net.ssl.SSLSocketFactory API. A malicious attacker in a privileged network position could abuse this to perform a man-in-the-middle attack. A successful…

  • CVE-2022-48307MedFeb 16, 2023
    risk 0.41cvss 6.3epss 0.00

    It was discovered that the Magritte-ftp was not verifying hostnames in TLS certificates due to a misuse of the javax.net.ssl.SSLSocketFactory API. A malicious attacker in a privileged network position could abuse this to perform a man-in-the-middle attack. A successful…

  • CVE-2022-27890MedFeb 16, 2023
    risk 0.41cvss 6.3epss 0.00

    It was discovered that the sls-logging was not verifying hostnames in TLS certificates due to a misuse of the javax.net.ssl.SSLSocketFactory API. A malicious attacker in a privileged network position could abuse this to perform a man-in-the-middle attack. A successful…

  • CVE-2022-48306MedFeb 16, 2023
    risk 0.37cvss 5.7epss 0.00

    Improper Validation of Certificate with Host Mismatch vulnerability in Gotham Chat IRC helper of Palantir Gotham allows A malicious attacker in a privileged network position could abuse this to perform a man-in-the-middle attack. A successful man-in-the-middle attack would allow…

  • CVE-2022-27888MedApr 26, 2022
    risk 0.36cvss 5.5epss 0.00

    Foundry Issues service versions 2.244.0 to 2.249.0 was found to be logging in a manner that captured sensitive information (session tokens). This issue was fixed in 2.249.1.

  • CVE-2025-53709MedJul 10, 2025
    risk 0.35cvss 5.4epss 0.00

    Secure-upload is a data submission service that validates single-use tokens when accepting submissions to channels. The service only installed on a small number of environments. Under specific circumstances, privileged users of secure-upload could have selected email templates…

  • CVE-2023-30963MedJul 10, 2023
    risk 0.35cvss 5.4epss 0.00

    A security defect was discovered in Foundry Frontend which enabled users to perform Stored XSS attacks in Slate if Foundry's CSP were to be bypassed. This defect was resolved with the release of Foundry Frontend 6.229.0. The service was rolled out to all affected Foundry…

  • CVE-2023-30956MedJul 10, 2023
    risk 0.34cvss 5.3epss 0.00

    A security defect was identified in Foundry Comments that enabled a user to discover the contents of an attachment submitted to another comment if they knew the internal UUID of the target attachment. This defect was resolved with the release of Foundry Comments 2.267.0.

  • CVE-2022-27897MedFeb 16, 2023
    risk 0.34cvss 5.3epss 0.01

    Palantir Gotham versions prior to 3.22.11.2 included an unauthenticated endpoint that would load portions of maliciously crafted zip files to memory. An attacker could repeatedly upload a malicious zip file, which would allow them to exhaust memory resources on the dispatch…