CVE-2023-30952

MEDIUM

Palantir Foundry < 6.228.0 - Phishing Link Creation via Issue Request Editing

Title source: llm

Description

A security defect was discovered in Foundry Issues that enabled users to create convincing phishing links by editing the request sent when creating an Issue. This defect was resolved in Frontend release 6.228.0 .

References (1)

Core 1

Core References

Vendor Advisory

https://palantir.safebase.us/?tcuUid=42bdb7fa-9a6d-4462-b89d-cabc62f281f4

Scores

CVSS v3 5.0

EPSS 0.0037

EPSS Percentile 28.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-20

Status published

Products (1)

palantir/foundry < 6.228.0

Published Aug 03, 2023

Tracked Since Feb 18, 2026