Unauthenticated Endpoint Vulnerability in Palantir Gotham Versions Prior to 3.22.11.2

Unauthenticated Endpoint Vulnerability in Palantir Gotham Versions Prior to 3.22.11.2

CVE-2022-27892 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Palantir Gotham versions prior to 3.22.11.2 included an unauthenticated endpoint that would have allowed an attacker to exhaust the memory of the Gotham dispatch service.

Learn more about our Web Application Penetration Testing UK.