CVE-2023-3485

CVE-2023-3485 is a low-severity vulnerability in Temporal with a CVSS 3.x base score of 3.0. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-1188.

Key facts

Description

Insecure defaults in open-source Temporal Server before version 1.20 on all platforms allows an attacker to craft a task token with access to a namespace other than the one specified in the request. Creation of this task token must be done outside of the normal Temporal server flow. It requires the namespace UUID and information from the workflow history for the target namespace. Under these conditions, it is possible to interfere with pending tasks in other namespaces, such as marking a task failed or completed. If a task is targeted for completion by the attacker, the targeted namespace must also be using the same data converter configuration as the initial, valid, namespace for the task completion payload to be decoded by workers in the target namespace.

Frequently asked questions

What is CVE-2023-3485?
Insecure defaults in open-source Temporal Server before version 1.20 on all platforms allows an attacker to craft a task token with access to a namespace other than the one specified in the request. Creation of this task token must be done outside of the normal Temporal server flow. It requires the namespace UUID and information from the workflow history for the target namespace. Under these conditions, it is possible to interfere with pending tasks in other namespaces, such as marking a task failed or completed. If a task is targeted for completion by the attacker, the targeted namespace must also be using the same data converter configuration as the initial, valid, namespace for the task completion payload to be decoded by workers in the target namespace.
How severe is CVE-2023-3485?
CVE-2023-3485 has a CVSS 3.x base score of 3.0, rated low severity. It is exploitable over local access with high attack complexity, requires high privileges and no user interaction. Impact on confidentiality is none, integrity low, and availability low.
Is CVE-2023-3485 being actively exploited?
It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (6th percentile), an estimate of the probability of exploitation in the next 30 days.
What products are affected by CVE-2023-3485?
CVE-2023-3485 affects Temporal. See the affected-products list for the exact vulnerable versions.
How do I fix CVE-2023-3485?
Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
When was CVE-2023-3485 published?
CVE-2023-3485 was published on 2023-06-30 and last updated on 2026-06-17.

References

Affected products (1)

Other CWE-1188 (Insecure Default Initialization of Resource) vulnerabilities

Browse all CWE-1188 (Insecure Default Initialization of Resource) vulnerabilities →