CVE-2026-5724 | temporal up to 1.28.3/1.29.5/1.30.3 StreamWorkflowReplicationMessages endpoint missing authentication

Inserito da Angelo Barbosa | Apr 10, 2026 | CVE

A vulnerability, which was classified as critical, has been found in temporal up to 1.28.3/1.29.5/1.30.3. The affected element is an unknown function of the file streaming AdminService/StreamWorkflowReplicationMessages endpoint. The manipulation leads to missing authentication.

This vulnerability is referenced as CVE-2026-5724. Remote exploitation of the attack is possible. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-5724 | temporal up to 1.28.3/1.29.5/1.30.3 StreamWorkflowReplicationMessages endpoint missing authentication

Post correlati

CVE-2024-33070 | Qualcomm Snapdragon Auto MDM9628/QCA6564A/QCA6564AU/QCA6574A/QCA6574AU Response Frame buffer over-read

CVE-2025-13741 | Schedule Post Changes with PublishPress Future Plugin getAuthors authorization

CVE-2024-1915 | Mitsubishi Electric MELSEC-Q/MELSEC-L Packet incorrect pointer scaling (icsa-24-074-14)

CVE-2025-64202 | TieLabs Sahifa Plugin up to 5.8.6 on WordPress cross site scripting