Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Palantir — Vulnerabilities & Security Advisories 47

Browse all 47 CVE security advisories affecting Palantir. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Palantir Technologies primarily develops software platforms for data integration, analysis, and decision-making, serving government agencies and large enterprises. With forty-seven recorded Common Vulnerabilities and Exposures (CVEs), the company’s historical attack surface has frequently involved remote code execution, cross-site scripting, and privilege escalation flaws. These vulnerabilities often stem from complex web interfaces and backend data processing components, allowing attackers to potentially bypass authentication or execute arbitrary commands. Notable security characteristics include the inherent risks associated with handling sensitive, classified, or proprietary data, which makes successful exploitation particularly damaging. While specific major public breaches are less documented compared to consumer tech firms, the high-value nature of its client base necessitates rigorous security postures. The recurring nature of these CVEs highlights the challenges of securing large-scale, integrated data ecosystems against sophisticated threat actors seeking access to critical information infrastructure.

Found 3 results / 47Clear Filters
Top products by Palantir: com.palantir.foundry:foundry-frontend Gotham com.palantir.comments:comments com.palantir.acme.gaia:gaia com.palantir.acme.cerberus:cerberus com.palantir.magritte:magritte-rest-source-bundle com.palantir.acme:gotham-fe-bundle com.palantir.apollo:autopilot com.palantir.tiles:tiles com.palantir.meta:orbital-simulator com.palantir.video:video-application-server com.palantir.skywise:guardian com.palantir.gotham:blackbird-witchcraft com.palantir.srx.prometheus.sls-oracle-sidecar:sls-oracle-sidecar com.palantir.gotham:external-artifacts com.palantir.artifacts:artifacts com.palantir.secupload:secure-upload com.palantir.controlpanel:control-panel com.palantir.compute:compute-service com.palantir.gotham:glutton com.palantir.acme:gotham-default-apps-bundle com.palantir.aries:aries sls-logging Foundry Multipass AtlasDB Foundry Magritte plugin osisoft-pi-web-connector Foundry Blobster Service Foundry Build2 Foundry Code-Workbooks Palantir Gotham Chat IRC helper
CVE IDTitleCVSSSeverityPublished
CVE-2022-27891 Palantir Gotham included an unauthenticated endpoint that listed all active usernames in the platform with an active session. — GothamCWE-200 5.3 Medium2023-02-16
CVE-2022-27892 Palantir Gotham included an endpoint that would log arbitrary sized payloads. — GothamCWE-20 5.3 Medium2023-02-16
CVE-2022-27897 Palantir Gotham included an endpoint that would log arbitrary sized zip files. — GothamCWE-20 5.3 Medium2023-02-16

This page lists every published CVE security advisory associated with Palantir. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.