QwikSec

Security Database

CVE

CWE

Training

CVE-2025-8396

Published: Sep 15, 2025

Modified: Sep 15, 2025

PUBLISHED

Description

Insufficiently specific bounds checking on authorization header could lead to denial of service in the Temporal server on all platforms due to excessive memory allocation.This issue affects all platforms and versions of OSS Server prior to 1.26.3, 1.27.3, and 1.28.1 (i.e., fixed in 1.26.3, 1.27.3, and 1.28.1 and later). Temporal Cloud services are not impacted.

Vendor	Product	Versions
Temporal	OSS Server	affected `0 - < 1.26.3` affected `1.27.0 - < 1.27.3` affected `1.28.0 - < 1.28.1`

Weaknesses (CWE)

References

https://github.com/temporalio/temporal/releases/tag/v1.26.3

https://github.com/temporalio/temporal/releases/tag/v1.27.3

https://github.com/temporalio/temporal/releases/tag/v1.28.1

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.