CVE-2024-12289

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Published Dec 12, 2024
CWE ID 460

Summary

CVE-2024-12289 is a vulnerability affecting Boundary Community Edition and Boundary Enterprise. During the initialization of the Boundary controller, these products incorrectly handle HTTP requests, potentially causing the server to terminate prematurely. This issue only arises during this brief startup phase. The vulnerability, which can result in a denial-of-service condition, is addressed in versions 0.16.4, 0.17.3, and 0.18.2 of both Boundary Community Edition and Boundary Enterprise.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share