Overview
- Description
- Information Exposure Through Log Files vulnerability discovered in Foundry when logs were captured using an underlying library known as Build2. This issue was present in versions earlier than 1.785.0. Upgrade to Build2 version 1.785.0 or greater.
- Source
- cve-coordination@palantir.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Severity
- HIGH
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:palantir:foundry_build2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "86FDD22C-382A-4B0F-ADBD-AAA9484C76E8",
"versionEndExcluding": "1.785.0"
}
],
"operator": "OR"
}
]
}
]