CVE-2024-49589 MEDIUM

CVE-2024-49589: Foundry artifacts denial of service

Vendor Palantir
Product com.palantir.artifacts:artifacts
Weakness CWE-770 · Uncontrolled resource consumption
Published February 18, 2025
Last update February 18, 2025

CVSS base score

6.5/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

Foundry Artifacts was found to be vulnerable to a Denial Of Service attack due to disk being potentially filled up based on an user supplied argument (size).

Key dates

02Disclosure timeline

February 18, 2025 CVE published
February 18, 2025 Record updated