Known Vulnerabilities for products from Opentelemetry
Listed below are 16 of the newest known vulnerabilities associated with the vendor "Opentelemetry".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-45292 json | Not Provided | 2026-05-28 | 2026-05-28 | |
| CVE-2026-44902 json | Not Provided | 2026-05-27 | 2026-05-28 | |
| CVE-2026-44213 json | Not Provided | 2026-05-26 | 2026-05-27 | |
| CVE-2026-42602 json | azureauthextension is the Azure Authenticator Extension. From 0.124.0 to 0.150.0, a server-side authentication bypass in azur... | Not Provided | 2026-05-13 | 2026-06-01 |
| CVE-2026-42348 json | Not Provided | 2026-05-12 | 2026-05-12 | |
| CVE-2026-42191 json | Not Provided | 2026-05-12 | 2026-05-13 | |
| CVE-2026-41484 json | OpenTelemetry.Exporter.OneCollector is a .NET exporter that sends telemetry to a OneCollector back-end over HTTP. In versions... | Not Provided | 2026-05-06 | 2026-05-15 |
| CVE-2026-41483 json | Not Provided | 2026-05-06 | 2026-05-07 | |
| CVE-2026-41433 json | OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From 0.4.0 to before 0.... | Not Provided | 2026-04-24 | 2026-05-14 |
| CVE-2026-41310 json | OpenTelemetry.Exporter.Zipkin is the .NET Zipkin exporter for OpenTelemetry. In versions 1.15.2 and earlier, the Zipkin expor... | Not Provided | 2026-05-06 | 2026-05-11 |
| CVE-2026-41078 json | OpenTelemetry dotnet is a dotnet telemetry framework. In 1.6.0-rc.1 and earlier, OpenTelemetry.Exporter.Jaeger may allow sust... | Not Provided | 2026-04-23 | 2026-04-28 |
| CVE-2026-40894 json | OpenTelemetry dotnet is a dotnet telemetry framework. In OpenTelemetry.Api 0.5.0-beta.2 to 1.15.2 and OpenTelemetry.Extension... | Not Provided | 2026-04-23 | 2026-04-28 |
| CVE-2026-40891 json | OpenTelemetry dotnet is a dotnet telemetry framework. From 1.13.1 to before 1.15.2, When exporting telemetry over gRPC using ... | Not Provided | 2026-04-23 | 2026-04-29 |
| CVE-2026-40182 json | OpenTelemetry dotnet is a dotnet telemetry framework. From 1.13.1 to before 1.15.2, When exporting telemetry to a back-end/co... | Not Provided | 2026-04-23 | 2026-04-29 |
| CVE-2026-39883 json | OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed the Dar... | Not Provided | 2026-04-08 | 2026-04-10 |
| CVE-2026-39882 json | OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to 1.43.0, the otlp HTTP exporters (traces/metrics/logs) re... | Not Provided | 2026-04-08 | 2026-04-09 |
| CVE-2026-29181 json | OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.36.0 to 1.40.0, multi-value baggage: header extraction par... | Not Provided | 2026-04-07 | 2026-04-14 |
| CVE-2023-47108 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2023-11-10 | 2023-11-20 |
| CVE-2023-45142 json | OpenTelemetry-Go Contrib is a collection of third-party packages for OpenTelemetry-Go. A handler wrapper out of the box adds ... | 7.5 - HIGH | 2023-10-12 | 2023-10-18 |
| CVE-2023-43810 json | OpenTelemetry, also known as OTel for short, is a vendor-neutral open-source Observability framework for instrumenting, gener... | 7.5 - HIGH | 2023-10-06 | 2023-10-11 |