CNNVD-202512-5075 Information

CNNVD ID

CNNVD-202512-5075

Related CVE

CVE-2025-14986

• CNNVD Published: 2025-12-30

Description (Chinese)

Temporal是temporal.io开源的一个持久化执行平台。 Temporal 1.24.0版本至1.29.1版本存在安全漏洞，该漏洞源于命名空间验证不当，可能导致绕过限制或策略。

Description (English)

Temporal is a sustainable implementation platform for the open source of Temporal.io. There is a security loophole in Temporal Versions 1.24.0 to 1.2.9.1, which stems from inappropriate namespace verification, which may lead to circumventing restrictions or tactics.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

temporal.io

Published

2025-12-30

Last Modified

2026-02-24

References

https://github.com/temporalio/temporal/releases/tag/v1.27.4 https://github.com/temporalio/temporal/releases/tag/v1.28.2 https://github.com/temporalio/temporal/releases/tag/v1.29.2

Patch

https://github.com/temporalio/temporal/releases