OpenTelemetry framework vulnerable to timing attack in bearertokenaut
Reporter | Title | Published | Views | Family All 13 |
---|---|---|---|---|
Github Security Blog | open-telemetry has an Observable Timing Discrepancy | 13 Aug 202418:59 | – | github |
OSV | CVE-2024-42368 | 13 Aug 202420:15 | – | osv |
OSV | open-telemetry has an Observable Timing Discrepancy in github.com/open-telemetry/opentelemetry-collector-contrib/extension/bearertokenauthextension | 13 Aug 202423:22 | – | osv |
OSV | open-telemetry has an Observable Timing Discrepancy | 13 Aug 202418:59 | – | osv |
OSV | CGA-j7x6-ff4w-c5gr | 16 Aug 202414:04 | – | osv |
OSV | CGA-wmgc-r5q9-c5g3 | 25 Sep 202405:37 | – | osv |
NVD | CVE-2024-42368 | 13 Aug 202420:15 | – | nvd |
Veracode | Timing Attack | 14 Aug 202405:13 | – | veracode |
Wolfi | CVE-2024-42368 vulnerabilities | 21 Jan 202503:15 | – | wolfi |
RedhatCVE | CVE-2024-42368 | 15 Aug 202417:18 | – | redhatcve |
[
{
"vendor": "open-telemetry",
"product": "opentelemetry-collector-contrib",
"versions": [
{
"version": ">= 0.80.0, < 0.107.0",
"status": "affected"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo