| CVE-2026-45686 |
high |
7.5 |
7.5 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, a remotely reachable integer overflow in OBI's memcac… |
| CVE-2026-45685 |
high |
7.5 |
7.5 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.1.0 to before version 0.9.0, malformed MongoDB wire messages can trigger uncaught … |
| CVE-2026-45680 |
high |
7.5 |
7.5 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI replays BPF probe hits into histogram observations by looping once pe… |
| CVE-2026-45678 |
high |
7.5 |
7.5 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the Postgres protocol parser assumes BIND message payloads contain a vali… |
| CVE-2026-45679 |
medium |
6.5 |
6.5 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI exports raw Redis error text as the span status message. Because Redi… |
| CVE-2026-45681 |
medium |
5.9 |
5.9 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the per-CPU message-buffer fallback path uses a 256-byte backup buffer bu… |
| CVE-2026-45682 |
medium |
5.5 |
5.5 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the custom CappedConcurrentHashMap introduced for Java TLS state tracking… |
| CVE-2026-45676 |
medium |
5.5 |
5.5 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI's replacement ELF parser trusts section offsets, counts, and string o… |
| CVE-2026-45684 |
medium |
5.3 |
5.3 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, OBI's log enricher mishandles writev buffers by readi… |
| CVE-2026-45683 |
low |
3.8 |
3.8 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the Java TLS ioctl probe reads user-controlled ioctl pointers with bpf_pr… |
