PT-2026-21928 · Unknown · Krakend-Ee+1
Published
2026-02-25
·
Updated
2026-02-28
·
CVE-2026-3206
CVSS v4.0
1.3
Low
| Vector | AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/S:N/AU:Y/R:A/V:D/RE:L/U:Clear |
Name of the Vulnerable Software and Affected Versions
KrakenD-CE versions prior to 2.13.1
KrakenD-EE versions prior to 2.13.0
Description
An improper resource shutdown or release issue exists in KrakenD, specifically within the CircuitBreaker modules of both KrakenD-CE and KrakenD-EE. The issue relates to how resources are handled, potentially leading to exhaustion or other unexpected behavior.
Recommendations
Update KrakenD-CE to version 2.13.1 or later.
Update KrakenD-EE to version 2.13.0 or later.
Fix
Improper Resource Release
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Krakend-Ce
Krakend-Ee