ROOT-APP-NUGET-CVE-2026-40894 CVE-2026-40894 in Rootio.OpenTelemetry.Api - Patched by Root

Root has patched CVE-2026-40894 in the Rootio.OpenTelemetry.Api package for Root:NuGet. Multiple fixed versions available...

CVE-2026-40894 vulnerabilities

Vulnerabilities for packages: azure-functions-host, promitor, kubernetes-reflector...

CVE-2026-40894

creationtimestamp| type| source ---|---|--- 2026-04-25 03:10:25+00:00| seen| https://bsky.app/profile/startdebugging.bsky.social/post/3mkc2wk6mhx2a...

CVE-2025-40894

A Stored HTML Injection vulnerability was discovered in the Alerted Nodes Dashboard functionality due to improper validation on an input parameter. A malicious authenticated user with the required privileges could edit a node label to inject HTML tags. If the system is configured to use the Alert...

CVE-2023-40894

creationtimestamp| type| source ---|---|--- 2023-08-24 22:13:38+00:00| seen| https://t.me/cibsecurity/69143...

CVE-2023-40894

CVE-2023-40894 affects Tenda AC8 router (example: v4 US_AC8V4.0si_V16.03.34.06_cn). The vulnerability is a stack overflow in the /goform/SetStaticRouteCfg parameter list. Public documents describe a buffer/stack overflow potentially allowing crash or arbitrary code execution in the application co...

CVE-2021-40894

CVE-2021-40894 affects underscore-99xp v1.7.2, where the deepValueSearch function can trigger a Regular Expression Denial of Service (ReDOS). Multiple sources (CNVD, NVD, Veracode, CNVD Chinese entry) describe a vulnerability in the deepValueSearch path that could lead to denial of service. The i...