Package impact
Go / go.opentelemetry.io/obi
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-41433 | high | 8.4 | 8.4 | 1mo ago | OpenTelemetry eBPF Instrumentation: Privileged Java agent injection allows arbitrary host file overwrite via untrusted TMPDIR | |||
| CVE-2026-45686 | high | — | 8.0 | 10d ago | OpenTelemetry eBPF Instrumentation: Memcached payload length overflow can crash OBI | |||
| CVE-2026-45685 | high | — | 8.0 | 10d ago | OpenTelemetry eBPF Instrumentation: MongoDB parser panics on malformed wire messages | |||
| CVE-2026-45678 | high | — | 8.0 | 10d ago | OpenTelemetry eBPF Instrumentation: Postgres BIND parsing can panic on malformed payloads |