The Contour Service was not checking that users had permission to create an analysis for a given dataset. This could allow an malicious user to clutter up Compass folders with extraneous analyses, that the attacker would otherwise not have permission to create.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
palantir contour |