| CVE-2026-41433 |
high |
8.4 |
8.4 |
|
|
|
1mo ago |
OpenTelemetry eBPF Instrumentation: Privileged Java agent injection allows arbitrary host file overwrite via untrusted TMPDIR |
| CVE-2026-45686 |
high |
7.5 |
7.5 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, a remotely reachable integer overflow in OBI's memcac… |
| CVE-2026-45685 |
high |
7.5 |
7.5 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.1.0 to before version 0.9.0, malformed MongoDB wire messages can trigger uncaught … |
| CVE-2026-45680 |
high |
7.5 |
7.5 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI replays BPF probe hits into histogram observations by looping once pe… |
| CVE-2026-45678 |
high |
7.5 |
7.5 |
|
|
|
17d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the Postgres protocol parser assumes BIND message payloads contain a vali… |
| CVE-2026-45683 |
low |
3.8 |
3.8 |
|
|
|
16d ago |
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the Java TLS ioctl probe reads user-controlled ioctl pointers with bpf_pr… |
