CVE-2023-43810 opentelemetry-instrumentation Denial of Service vulnerability due to unbound cardinality metrics

OpenTelemetry, also known as OTel for short, is a vendor-neutral open-source Observability framework for instrumenting, generating, collecting, and exporting telemetry data such as traces, metrics, logs. Autoinstrumentation out of the box adds the label httpmethod that has unbound cardinality. It...

CVE-2023-37404

IBM Observability with Instana 1.0.243 through 1.0.254 could allow an attacker on the network to execute arbitrary code on the host after a successful DNS poisoning attack. IBM X-Force ID: 259789...

CVE-2023-37404

IBM Observability with Instana 1.0.243 through 1.0.254 could allow an attacker on the network to execute arbitrary code on the host after a successful DNS poisoning attack. IBM X-Force ID: 259789...

Code injection

IBM Observability with Instana 1.0.243 through 1.0.254 could allow an attacker on the network to execute arbitrary code on the host after a successful DNS poisoning attack. IBM X-Force ID: 259789...

CVE-2023-37404

Summary: CVE-2023-37404 affects IBM Observability with Instana OnPrem versions 1.0.243–1.0.254. A network attacker can exploit DNS poisoning to execute arbitrary code on the host. The NVD/IBM bulletin report a high-severity impact with a base CVSS v3.1 score up to 9.8 (CRITICAL). Remediation guid...

CVE-2023-37404 IBM Observability with Instana code execution

IBM Observability with Instana 1.0.243 through 1.0.254 could allow an attacker on the network to execute arbitrary code on the host after a successful DNS poisoning attack. IBM X-Force ID: 259789...

CVE-2023-37404 IBM Observability with Instana code execution

IBM Observability with Instana 1.0.243 through 1.0.254 could allow an attacker on the network to execute arbitrary code on the host after a successful DNS poisoning attack. IBM X-Force ID: 259789...

PT-2023-25946 · Ibm · Ibm Observability With Instana

Name of the Vulnerable Software and Affected Versions: IBM Observability with Instana versions 1.0.243 through 1.0.254 Description: The issue allows an attacker on the network to execute arbitrary code on the host after a successful DNS poisoning attack. Recommendations: For versions 1.0.243...

Security Bulletin: IBM Instana Observability is vulnerable to arbitrary code execution

Summary IBM Observability with Instana could allow an attacker on the network to execute arbitrary code on the host after a successful DNS poisoning attack. Vulnerability Details CVEID:CVE-2023-37404 DESCRIPTION: IBM Observability with Instana could allow an attacker on the network to execute...

Important: Red Hat Security Advisory: Network Observability 1.4.0 for OpenShift

Network Observability is an OpenShift operator that deploys a monitoring pipeline to collect and enrich network flows that are produced by the Network Observability eBPF agent. The operator provides dashboards, metrics, and keeps flows accessible in a queryable log store, Grafana Loki. When a...

Unveiling eBPF: Revolutionizing Security and Observability

An Introduction to Extended BPF and Its Transformative Impact...

CVE-2023-41332

CVE-2023-41332 affects Cilium’s eBPF dataplane. When the Layer 7 proxy is disabled, workloads annotated with policy.cilium.io/proxy-visibility (>= v1.13) or io.cilium.proxy-visibility (

CVE-2023-39347

Cilium CVE-2023-39347: An attacker with Kubernetes API Server access can update pod labels, causing Cilium to apply incorrect network policies by using user-provided labels to select policies. This can bypass policies when a pod label (e.g., namespace) resolves to non-existent constructs, affecti...

CVE-2023-0813

A flaw was found in the Network Observability plugin for OpenShift console. Unless the Loki authToken configuration is set to FORWARD mode, authentication is no longer enforced, allowing any user who can connect to the OpenShift Console in an OpenShift cluster to retrieve flows without...

CVE-2023-0813

A flaw was found in the Network Observability plugin for OpenShift console. Unless the Loki authToken configuration is set to FORWARD mode, authentication is no longer enforced, allowing any user who can connect to the OpenShift Console in an OpenShift cluster to retrieve flows without...

CVE-2023-0813

A flaw was found in the Network Observability plugin for OpenShift console. Unless the Loki authToken configuration is set to FORWARD mode, authentication is no longer enforced, allowing any user who can connect to the OpenShift Console in an OpenShift cluster to retrieve flows without...

Authentication flaw

A flaw was found in the Network Observability plugin for OpenShift console. Unless the Loki authToken configuration is set to FORWARD mode, authentication is no longer enforced, allowing any user who can connect to the OpenShift Console in an OpenShift cluster to retrieve flows without...

CVE-2023-0813

CVE-2023-0813 affects the OpenShift Network Observability Console plugin. A flaw occurs when the Loki authToken configuration is not set to FORWARD; authentication is not enforced, allowing any user who can access the OpenShift Console to retrieve flows without authentication. Affected component:...

CVE-2023-0813 Network-observability-console-plugin-container: setting loki authtoken configuration to disable or host mode leads to authentication longer being enforced

A flaw was found in the Network Observability plugin for OpenShift console. Unless the Loki authToken configuration is set to FORWARD mode, authentication is no longer enforced, allowing any user who can connect to the OpenShift Console in an OpenShift cluster to retrieve flows without...

CVE-2023-0813 Network-observability-console-plugin-container: setting loki authtoken configuration to disable or host mode leads to authentication longer being enforced

A flaw was found in the Network Observability plugin for OpenShift console. Unless the Loki authToken configuration is set to FORWARD mode, authentication is no longer enforced, allowing any user who can connect to the OpenShift Console in an OpenShift cluster to retrieve flows without...