Palantir Foundry Container Service Access Control Bypass Vulnerability

A vulnerability in Palantir Foundry Container Service allowed pods in the same namespace to communicate with each other, bypassing access controls. This issue arose from a product misconfiguration in certain deployment types, enabling direct pod-to-pod communication. Compounding the problem, a vulnerable endpoint in the Foundry Container Service executed user-controlled commands locally without proper access control, potentially leading to privilege escalation or unauthorized actions across pods.

Impact

Exploitation of this vulnerability could have allowed for unauthorized execution of commands in the affected pods, potentially leading to privilege escalation or other unauthorized actions within the application.

Remediation

The vulnerability has been addressed by enforcing stricter network boundaries between pods, updating the Foundry Container Service endpoint to listen only on localhost, implementing authentication checks on the affected endpoint, and releasing fixed versions of the compute-service and code-assist-proxy.