Lucene search
K

4 matches found

OSV
OSV
added 2026/04/08 9:17 p.m.5 views

UBUNTU-CVE-2026-39883

OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed the Darwin ioreg command to use an absolute path but left the BSD kenv command using a bare name, allowing the same PATH hijacking attack on BSD and Solaris platforms. This...

8.8CVSS5.8AI score0.0022EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2026/04/08 9:17 p.m.5 views

CVE-2026-39883

OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed the Darwin ioreg command to use an absolute path but left the BSD kenv command using a bare name, allowing the same PATH hijacking attack on BSD and Solaris platforms. This...

7.3CVSS5.8AI score0.0022EPSS
Exploits1References3
NVD
NVD
added 2026/04/08 9:17 p.m.32 views

CVE-2026-39883

OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed the Darwin ioreg command to use an absolute path but left the BSD kenv command using a bare name, allowing the same PATH hijacking attack on BSD and Solaris platforms. This...

8.8CVSS0.0022EPSS
Exploits1References8
Debian CVE
Debian CVE
added 2026/04/08 8:26 p.m.2 views

CVE-2026-39883

OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed the Darwin ioreg command to use an absolute path but left the BSD kenv command using a bare name, allowing the same PATH hijacking attack on BSD and Solaris platforms. This...

8.8CVSS5.2AI score0.0022EPSS
Exploits1
Rows per page
Query Builder