CVE-2023-30969

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Oct 26, 2023
Updated: Nov 7, 2023
CWE ID 862
CWE ID 284

Summary

CVE-2023-30969 is a vulnerability affecting the Palantir Tiles1 service. This issue involves a lack of authentication and authorization on several endpoints within the service, rendering it susceptible to unauthorized access. The impact of this vulnerability is significant as it can potentially allow attackers to gain unauthorized access to sensitive information or perform unintended actions within the service. Palantir has since released a patch to address this issue, and it is recommended that users update their systems as soon as possible to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share