A security defect was identified in Foundry Comments that enabled a user to discover the contents of an attachment submitted to another comment if they knew the internal UUID of the target attachment. This defect was resolved with the release of Foundry Comments 2.267.0.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Palantir
Published: 2023-07-10T21:07:31.073Z
Updated: 2024-08-02T14:45:24.243Z
Reserved: 2023-04-21T11:25:51.028Z
Link: CVE-2023-30956
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-07-10T22:15:09.337
Modified: 2023-11-07T04:14:08.543
Link: CVE-2023-30956
Redhat
No data.