Description

Due to a product misconfiguration in certain deployment types, it was possible from different pods in the same namespace to communicate with each other. This issue resulted in bypass of access control due to the presence of a vulnerable endpoint in Foundry Container Service that executed user-controlled commands locally.

Related CPE's

Could not find any relations

References

https://palantir.safebase.us/?tcuUid=4dbae101-79da-433c-8184-c70b78f4701b

Weaknesses

[email protected]

Secondary
CWE-653

CVSS impact metrics

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

7.5 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Awaiting analysis

Published

2025-12-18T21:15:53.510

23 hours ago

Last modified

2025-12-19T18:00:18.330

3 hours ago