Network boundaries not respected in certain Foundry namespaces._CVE-2025-53710

7.5 / 10

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Due to a product misconfiguration in certain deployment types, it was possible from different pods in the same namespace to communicate with each other. This issue resulted in bypass of access control due to the presence of a vulnerable endpoint in Foundry Container Service that executed user-controlled commands locally.

Basic Information

ID CVE-2025-53710

Source Palantir

Published Dec 18, 2025 at 21:05

Modified Dec 18, 2025 at 21:39

Affected Product

Vendor Palantir

Product com.palantir.compute:compute-service

Version 0.1372.0

CWE Classification

CWE-653

References

palantir.safebase.us /

{
    "lastseen": "",
    "description": "Due to a product misconfiguration in certain deployment types, it was possible from different pods in the same namespace to communicate with each other. This issue resulted in bypass of access control due to the presence of a vulnerable endpoint in Foundry Container Service that executed user-controlled commands locally.",
    "published": "2025-12-18T21:05:51.588Z",
    "modified": "2025-12-18T21:39:48.276Z",
    "type": "cve",
    "title": "Network boundaries not respected in certain Foundry namespaces.",
    "source": "Palantir",
    "references": "https://palantir.safebase.us/?tcuUid=4dbae101-79da-433c-8184-c70b78f4701b",
    "id": "CVE-2025-53710",
    "bulletinFamily": "",
    "cwe": [
        "CWE-653"
    ],
    "cvelist": null,
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 7.5,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "com.palantir.compute:compute-service",
    "version": "0.1372.0",
    "vendor": "Palantir",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}