Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: opentelemetry Clear
ID Title
CVE-2026-44967 Vulnerability in c (CVE-2026-44967)
vulnerability in c (CVE-2026-44967). Risk of unauthorized operations or information disclosure.
CVE-2026-45287 Vulnerability in go.opentelemetry.io/otel/schema/v1.1 (CVE-2026-45287)
vulnerability in go.opentelemetry.io/otel/schema/v1.1 (CVE-2026-45287). Risk of unauthorized operations or information disclosure. Exploitable via ``ParseFile``. Mitigation: upgrade to `0.0.17` or later.
CVE-2026-41178 Vulnerability in go.opentelemetry.io/otel/baggage (CVE-2026-41178)
vulnerability in go.opentelemetry.io/otel/baggage (CVE-2026-41178). Risk of unauthorized operations or information disclosure. Exploitable via ``Parse``. Mitigation: upgrade to `1.44.0` or later.
CVE-2026-45686 Vulnerability in go.opentelemetry.io/obi (CVE-2026-45686)
vulnerability in go.opentelemetry.io/obi (CVE-2026-45686). Risk of unauthorized operations or information disclosure. Exploitable via ``set``. Mitigation: upgrade to `0.9.0` or later.
CVE-2026-45685 Vulnerability in go.opentelemetry.io/obi (CVE-2026-45685)
vulnerability in go.opentelemetry.io/obi (CVE-2026-45685). Risk of unauthorized operations or information disclosure. Exploitable via ``parseOpMessage``. Mitigation: upgrade to `0.9.0` or later.
CVE-2026-45684 Vulnerability in go.opentelemetry.io/obi (CVE-2026-45684)
vulnerability in go.opentelemetry.io/obi (CVE-2026-45684). Risk of unauthorized operations or information disclosure. Exploitable via ``writev``. Mitigation: upgrade to `0.9.0` or later.
CVE-2026-45682 Vulnerability in go.opentelemetry.io/obi (CVE-2026-45682)
vulnerability in go.opentelemetry.io/obi (CVE-2026-45682). Risk of unauthorized operations or information disclosure. Exploitable via ``CappedConcurrentHashMap``. Mitigation: upgrade to `0.9.0` or later.
CVE-2026-45683 Vulnerability in go.opentelemetry.io/obi (CVE-2026-45683)
vulnerability in go.opentelemetry.io/obi (CVE-2026-45683). Risk of unauthorized operations or information disclosure. Exploitable via ``bpf_probe_read``. Mitigation: upgrade to `0.9.0` or later.
CVE-2026-45681 Out-of-Bounds Read in go.opentelemetry.io/obi (CVE-2026-45681)
vulnerability in go.opentelemetry.io/obi (CVE-2026-45681). Confidential information can be exposed externally. Exploitable via ``k_kprobes_http2_buf_size``. Mitigation: upgrade to `0.9.0` or later.
CVE-2026-45680 Vulnerability in go.opentelemetry.io/obi (CVE-2026-45680)
vulnerability in go.opentelemetry.io/obi (CVE-2026-45680). Risk of unauthorized operations or information disclosure. Exploitable via ``probeMetrics``. Mitigation: upgrade to `0.9.0` or later.
CVE-2026-45678 Vulnerability in go.opentelemetry.io/obi (CVE-2026-45678)
vulnerability in go.opentelemetry.io/obi (CVE-2026-45678). Risk of unauthorized operations or information disclosure. Exploitable via ``BIND``. Mitigation: upgrade to `0.9.0` or later.
CVE-2026-45679 Vulnerability in go.opentelemetry.io/obi (CVE-2026-45679)
vulnerability in go.opentelemetry.io/obi (CVE-2026-45679). Risk of unauthorized operations or information disclosure. Exploitable via ``getRedisError``. Mitigation: upgrade to `0.9.0` or later.
CVE-2026-45676 Vulnerability in go.opentelemetry.io/obi (CVE-2026-45676)
vulnerability in go.opentelemetry.io/obi (CVE-2026-45676). Risk of unauthorized operations or information disclosure. Exploitable via ``GetCStringUnsafe``. Mitigation: upgrade to `0.9.0` or later.
CVE-2026-42602 Vulnerability in github.com/open-telemetry/opentelemetry-collector-contrib/extension/azureauthextension (CVE-2026-42602)
vulnerability in github.com/open-telemetry/opentelemetry-collector-contrib/extension/azureauthextension (CVE-2026-42602). Data can be tampered with by attackers. Exploitable via `POST /v1/traces`.
CVE-2026-42191 Vulnerability in OpenTelemetry.Exporter.OpenTelemetryProtocol (CVE-2026-42191)
vulnerability in OpenTelemetry.Exporter.OpenTelemetryProtocol (CVE-2026-42191). Confidential information can be exposed externally. Exploitable via ``traces``. Mitigation: upgrade to `1.15.3` or later.
CVE-2026-42348 Vulnerability in OpenTelemetry.OpAmp.Client (CVE-2026-42348)
vulnerability in OpenTelemetry.OpAmp.Client (CVE-2026-42348). Risk of unauthorized operations or information disclosure. Exploitable via ``ReadAsByteArrayAsync``. Mitigation: upgrade to `0.2.0-alpha.1` or later.
CVE-2026-41484 Vulnerability in OpenTelemetry.Exporter.OneCollector (CVE-2026-41484)
vulnerability in OpenTelemetry.Exporter.OneCollector (CVE-2026-41484). Risk of unauthorized operations or information disclosure. Exploitable via ``HttpJsonPostTransport``. Mitigation: upgrade to `1.15.1` or later.
CVE-2026-41483 Vulnerability in OpenTelemetry.Resources.Azure (CVE-2026-41483)
vulnerability in OpenTelemetry.Resources.Azure (CVE-2026-41483). Risk of unauthorized operations or information disclosure. Exploitable via ``OpenTelemetry.Resources.Azure``. Mitigation: upgrade to `1.15.1-beta.1` or later.
CVE-2026-41310 Vulnerability in OpenTelemetry.Exporter.Zipkin (CVE-2026-41310)
vulnerability in OpenTelemetry.Exporter.Zipkin (CVE-2026-41310). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.15.3` or later.
CVE-2026-41433 Path Traversal in opentelemetry (CVE-2026-41433)
path traversal in opentelemetry (CVE-2026-41433). Data can be tampered with by attackers. Mitigation: upgrade to `0.8.0` or later.
CVE-2026-39883 Vulnerability in opentelemetry (CVE-2026-39883)
vulnerability in opentelemetry (CVE-2026-39883). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.43.0` or later.
CVE-2026-29181 Vulnerability in opentelemetry (CVE-2026-29181)
vulnerability in opentelemetry (CVE-2026-29181). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.41.0` or later.
CVE-2026-24051 Vulnerability in opentelemetry (CVE-2026-24051)
vulnerability in opentelemetry (CVE-2026-24051). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →