Com.Palantir.Foundry
Approved changes feed: RSS · Atom
cpe:2.3:a:palantir:com.palantir.foundry:foundry-frontend:*:*:*:*:*:*:*:*
part: a version: foundry-frontend update: *
| Vendor | Palantir (bb329e3d-18af-5273-8fa1-03aa6516a02f) |
|---|---|
| Product | Com.Palantir.Foundry (97825ff8-8baf-5d6f-ba95-5f21a2cf8506) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-30963 |
vulnerable | 2026-06-03 14:51:54.304028 |
Stored XSS in Foundry Slate Query Dropdown menu
MEDIUM (5.4)
A security defect was discovered in Foundry Frontend which enabled users to perform Stored XSS attacks in Slate if Foundry's CSP were to be bypassed. This defect was resolved with the release of Foundry Frontend 6.229.0. The service was rolled out to all affected Foundry instances. No further intervention is required.
Published: 2023-07-10T21:04:08.584Z
Updated: 2024-10-21T21:10:50.301Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-30958 |
vulnerable | 2026-06-03 14:51:54.288333 |
DOM XSS in Developer mode dashboard via redirect GET parameter
MEDIUM (4.7)
A security defect was identified in Foundry Frontend that enabled users to potentially conduct DOM XSS attacks if Foundry's CSP were to be bypassed.
This defect was resolved with the release of Foundry Frontend 6.225.0.
Published: 2023-08-03T21:09:10.026Z
Updated: 2024-10-09T20:10:39.833Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-30952 |
not_vulnerable | 2026-06-03 14:51:54.280697 |
Foundry Issues reporterPath phishing by parameter injection
MEDIUM (5)
A security defect was discovered in Foundry Issues that enabled users to create convincing phishing links by editing the request sent when creating an Issue. This defect was resolved in Frontend release 6.228.0 .
Published: 2023-08-03T21:12:53.803Z
Updated: 2024-10-09T19:47:12.319Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-22835 |
vulnerable | 2026-06-03 14:49:20.308292 |
Denial of Service in Foundry Issues
HIGH (7.7)
A security defect was identified that enabled a user of Foundry Issues to perform a Denial of Service attack by submitting malformed data in an Issue that caused loss of frontend functionality to all issue participants.
This defect was resolved with the release of Foundry Issues 2.510.0 and Foundry Frontend 6.228.0.
Published: 2023-07-10T20:58:14.697Z
Updated: 2024-10-29T13:43:59.721Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.