Vulnerability Description
Insufficiently specific bounds checking on authorization header could lead to denial of service in the Temporal server on all platforms due to excessive memory allocation.This issue affects all platforms and versions of OSS Server prior to 1.26.3, 1.27.3, and 1.28.1 (i.e., fixed in 1.26.3, 1.27.3, and 1.28.1 and later). Temporal Cloud services are not impacted.
Related Weaknesses (CWE)
References
- https://github.com/temporalio/temporal/releases/tag/v1.26.3
- https://github.com/temporalio/temporal/releases/tag/v1.27.3
- https://github.com/temporalio/temporal/releases/tag/v1.28.1
FAQ
What is CVE-2025-8396?
CVE-2025-8396 is a documented vulnerability. Insufficiently specific bounds checking on authorization header could lead to denial of service in the Temporal server on all platforms due to excessive memory allocation.This issue affects all platfo...
How severe is CVE-2025-8396?
CVSS scoring is not yet available for CVE-2025-8396. Check NVD for updates.
Is there a patch for CVE-2025-8396?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.