CVE-2023-22835: Denial of Service in Foundry Issues
First published: Mon Jul 10 2023(Updated: )
A security defect was identified that enabled a user of Foundry Issues to perform a Denial of Service attack by submitting malformed data in an Issue that caused loss of frontend functionality to all issue participants. This defect was resolved with the release of Foundry Issues 2.510.0 and Foundry Frontend 6.228.0.
Credit: cve-coordination@palantir.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Palantir Foundry Frontend | <6.228.0 | |
| Palantir Foundry | <2.510.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the CVE ID of this vulnerability?
The CVE ID of this vulnerability is CVE-2023-22835.
What is the severity level of CVE-2023-22835?
The severity level of CVE-2023-22835 is high (7 out of 10).
How does CVE-2023-22835 affect Palantir Foundry Frontend?
CVE-2023-22835 affects Palantir Foundry Frontend versions up to 6.228.0.
How does CVE-2023-22835 affect Palantir Foundry Issues?
CVE-2023-22835 affects Palantir Foundry Issues versions up to 2.510.0.
How can CVE-2023-22835 be fixed?
CVE-2023-22835 can be fixed by upgrading to Foundry Issues 2.510.0 and Foundry Frontend 6.228.0 or newer versions.
- agent/author
- agent/type
- agent/softwarecombine
- agent/severity
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/title
- agent/weakness
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-latest
- collector/nvd-api
- vendor/palantir
- canonical/palantir foundry frontend
- canonical/palantir foundry