Home

Description

Due to a product misconfiguration in certain deployment types, it was possible from different pods in the same namespace to communicate with each other. This issue resulted in bypass of access control due to the presence of a vulnerable endpoint in Foundry Container Service that executed user-controlled commands locally.

PUBLISHED Reserved 2025-07-08 | Published 2025-12-18 | Updated 2025-12-18 | Assigner Palantir




HIGH: 7.5CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

The product does not properly compartmentalize or isolate functionality, processes, or resources that require different privilege levels, rights, or permissions.

Product status

0.1372.0 (semver) before *
unaffected

2.1289.0 (semver) before *
unaffected

References

palantir.safebase.us/...4dbae101-79da-433c-8184-c70b78f4701b

cve.org (CVE-2025-53710)

nvd.nist.gov (CVE-2025-53710)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.