CVE-2023-22835

HIGH

Palantir Foundry Issues < 2.510.0 and Foundry Frontend < 6.228.0 - Denial of Service via Malformed Issue Data

Title source: llm

Description

A security defect was identified that enabled a user of Foundry Issues to perform a Denial of Service attack by submitting malformed data in an Issue that caused loss of frontend functionality to all issue participants. This defect was resolved with the release of Foundry Issues 2.510.0 and Foundry Frontend 6.228.0.

References (1)

Core 1

Core References

Vendor Advisory

https://palantir.safebase.us/?tcuUid=0e2e79bd-cc03-42a8-92c2-c0e68a1ea53d

Scores

CVSS v3 7.7

EPSS 0.0057

EPSS Percentile 42.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-20

Status published

Products (2)

palantir/foundry_frontend < 6.228.0

palantir/foundry_issues < 2.510.0

Published Jul 10, 2023

Tracked Since Feb 18, 2026