漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Access control issue impacting RV backed objects
Vulnerability Description
Restricted Views backed objects (OSV1) could be bypassed under specific circumstances due to a software bug, this could have allowed users that didn't have permission to see such objects to view them via Object Explorer directly. This software bug did not impact or otherwise make data available across organizational boundaries nor did it allow for data to be viewed or accessed by unauthenticated users. The affected service have been patched and automatically deployed to all Apollo-managed Foundry instances.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
授权机制缺失
Vulnerability Title
Palantir Foundry 安全漏洞
Vulnerability Description
Palantir Foundry是美国Palantir公司的一个业务流程管理平台。 Palantir Foundry 105.110.1至105.115.0版本存在安全漏洞,该漏洞源于受限制视图支持的对象(OSV1)会被绕过,从而允许无权查看此类对象的用户直接通过对象资源管理器查看它们。
CVSS Information
N/A
Vulnerability Type
N/A