Every CVE whose affected-product data names Palantir Gotham, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2022-27891 — CVSS 5.3 (medium): Palantir Gotham included an unauthenticated endpoint that listed all active usernames on the stack with an active session. The affected…
CVE-2022-27892 — CVSS 5.3 (medium): Palantir Gotham versions prior to 3.22.11.2 included an unauthenticated endpoint that would have allowed an attacker to exhaust the memory…
CVE-2022-27897 — CVSS 5.3 (medium): Palantir Gotham versions prior to 3.22.11.2 included an unauthenticated endpoint that would load portions of maliciously crafted zip files…