Palantir Foundry Comments
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Palantir Foundry Comments.
By the Year
In 2026 there have been 0 vulnerabilities in Palantir Foundry Comments. Foundry Comments did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 2 | 5.90 |
It may take a day or so for new Foundry Comments vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Palantir Foundry Comments Security Vulnerabilities
Foundry Comments <2.267.0: Attachment Disclosure via Internal UUID
CVE-2023-30956
5.3 - Medium
- July 10, 2023
A security defect was identified in Foundry Comments that enabled a user to discover the contents of an attachment submitted to another comment if they knew the internal UUID of the target attachment. This defect was resolved with the release of Foundry Comments 2.267.0.
Foundry Comments Auth Bypass via Attachment UUID before 2.249.0
CVE-2023-30948
6.5 - Medium
- June 06, 2023
A security defect in Foundry's Comments functionality resulted in the retrieval of attachments to comments not being gated by additional authorization checks. This could enable an authenticated user to inject a prior discovered attachment UUID into other arbitrary comments to discover it's content. This defect was fixed in Foundry Comments 2.249.0, and a patch was rolled out to affected Foundry environments. No further intervention is required at this time.
AuthZ
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Palantir Foundry Comments or by Palantir? Click the Watch button to subscribe.
