PT-2026-36926 · Hashicorp · Boundary Enterprise+1
Published
2026-05-04
·
Updated
2026-05-04
·
CVE-2026-7776
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Boundary Community Edition versions prior to 0.21.3
Boundary Community Edition versions prior to 0.20.3
Boundary Community Edition versions prior to 0.19.5
Boundary Enterprise versions prior to 0.21.3
Boundary Enterprise versions prior to 0.20.3
Boundary Enterprise versions prior to 0.19.5
Description
Workers are susceptible to a denial-of-service condition during node enrollment TLS handshakes. An attacker with network access to the worker authentication listener can open a connection and delay or withhold the client certificate during the TLS handshake, which causes worker connection handling to block. This action may prevent legitimate worker connections from being accepted or routed.
Recommendations
Update to version 0.21.3
Update to version 0.20.3
Update to version 0.19.5
Fix
DoS
Allocation of Resources Without Limits
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Boundary Community Edition
Boundary Enterprise