Description

Restricted Views backed objects (OSV1) could be bypassed under specific circumstances due to a software bug, this could have allowed users that didn't have permission to see such objects to view them via Object Explorer directly. This software bug did not impact or otherwise make data available across organizational boundaries nor did it allow for data to be viewed or accessed by unauthenticated users. The affected service have been patched and automatically deployed to all Apollo-managed Foundry instances.

INFO

Published Date :

2024-12-02T20:26:15.350Z

Last Modified :

2024-12-02T20:46:18.532Z

Source :

Palantir
AFFECTED PRODUCTS

The following products are affected by CVE-2024-49581 vulnerability.

Vendors Products
Palantir
  • Foundry
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-49581.

URL Resource
https://palantir.safebase.us/?tcuUid=b60db1ee-4b1a-475d-848e-c5a670a0da16 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact