Critical Security Vulnerability: Lack of Authentication/Authorization in Palantir Tiles1 Service

Critical Security Vulnerability: Lack of Authentication/Authorization in Palantir Tiles1 Service

CVE-2023-30969 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

The Palantir Tiles1 service was found to be vulnerable to an API wide issue where the service was not performing authentication/authorization on all the endpoints.

Learn more about our Api Penetration Testing.