A security defect was discovered in Foundry Frontend which enabled users to perform Stored XSS attacks in Slate if Foundry's CSP were to be bypassed. This defect was resolved with the release of Foundry Frontend 6.229.0. The service was rolled out to all affected Foundry instances. No further intervention is required.
History

Mon, 21 Oct 2024 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Palantir

Published: 2023-07-10T21:04:08.584Z

Updated: 2024-10-21T21:10:50.301Z

Reserved: 2023-04-21T11:25:51.028Z

Link: CVE-2023-30963

cve-icon Vulnrichment

Updated: 2024-08-02T14:45:24.267Z

cve-icon NVD

Status : Modified

Published: 2023-07-10T22:15:09.477

Modified: 2024-11-21T08:01:10.510

Link: CVE-2023-30963

cve-icon Redhat

No data.