Palantir Gotham versions before 3.22.11.2 included an unauthenticated endpoint that would load portions of maliciously crafted zip files to memory. An attacker could repeatedly upload a malicious zip file, which would allow them to exhaust memory resources on the dispatch server.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
palantir gotham |