Lucene search
+L

18 matches found

OSV
OSV
added 6 days ago5 views

CLEANSTART-2026-AV21509 Security fixes for CVE-2026-27145, CVE-2026-33816, CVE-2026-34986, CVE-2026-39821, CVE-2026-39824, CVE-2026-39883, CVE-2026-41602, CVE-2026-42504, CVE-2026-42507, CVE-2026-46595, ghsa-6g7g-w4f8-9c9x, ghsa-p77j-4mvh-x3m3, ghsa-xmrv-pmrh-hhx2 applied in versions: 0.144.0-r3, 0.144.0-r4, 0.150.0-r0, 0.150.0-r1

Multiple security vulnerabilities affect the opentelemetry-collector-contrib package. These issues are resolved in later releases. See references for individual vulnerability details...

10CVSS6.1AI score0.01163EPSS
Exploits1References24
RedHat Linux
RedHat Linux
added 2026/06/25 5:48 a.m.7 views

Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: opentelemetry-collector-contrib: opentelemetry-collector-contrib-0.155.0-0.1.hum1 aarch64, x8664 opentelemetry-collector-contrib-0.155.0-0.1.hum1.src src...

8.1CVSS5.8AI score0.00761EPSS
Exploits0References5
OSV
OSV
added 2026/06/08 2:1 p.m.10 views

CLEANSTART-2026-MC76610 Security fixes for CVE-2026-27145, CVE-2026-33816, CVE-2026-34986, CVE-2026-39821, CVE-2026-39824, CVE-2026-39883, CVE-2026-41602, CVE-2026-42504, CVE-2026-42507, CVE-2026-46595, ghsa-6g7g-w4f8-9c9x, ghsa-p77j-4mvh-x3m3, ghsa-xmrv-pmrh-hhx2 applied in versions: 0.144.0-r3, 0.144.0-r4, 0.150.0-r0, 0.150.0-r1

Multiple security vulnerabilities affect the opentelemetry-collector-contrib package. These issues are resolved in later releases. See references for individual vulnerability details...

10CVSS7.2AI score0.01163EPSS
Exploits1References24
CNNVD
CNNVD
added 2026/05/26 12:0 a.m.13 views

OpenTelemetry Collector Contrib 信任管理问题漏洞

OpenTelemetry Collector Contrib is an extensible telemetry data collection component library developed by OpenTelemetry - CNCF. Versions of OpenTelemetry Collector Contrib prior to 1.1.0 contained a trust management vulnerability. This vulnerability stemmed from the lack of validation of HTTPS/TL...

6.5CVSS5.8AI score0.00207EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.13 views

OpenTelemetry Collector Contrib 安全漏洞

OpenTelemetry Collector Contrib is an extensible telemetry data collection component library developed under OpenTelemetry - CNCF. There are security vulnerabilities in versions 0.124.0 to 0.150.0 of OpenTelemetry Collector Contrib. These vulnerabilities stem from the Authenticate method not...

8.1CVSS5.8AI score0.00222EPSS
Exploits1References1
Wolfi
Wolfi
added 2026/03/31 1:48 p.m.18 views

CVE-2026-32285 vulnerabilities

Vulnerabilities for packages: grafana-alloy, mcp-grafana, terraform-mcp-server, opentelemetry-collector, terragrunt, ollama, gitlab-runner, tempo, vcluster, teleport, malcontent, opentelemetry-collector-contrib, cri-tools, dagger, k3s, dgraph, loki, maru, nuclei, weaviate, witness, rclone, lazygi...

7.5CVSS6.5AI score0.0075EPSS
Exploits1
Redos
Redos
added 2026/03/27 12:0 a.m.7 views

ROS-20260327-73-0013

Vulnerability in opentelemetry-collector-contrib related to unrestricted resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS7.1AI score0.00392EPSS
Exploits0
Redos
Redos
added 2026/03/27 12:0 a.m.9 views

ROS-20260327-73-0014

Vulnerability in opentelemetry-collector-contrib related to incorrect resource initialization. Exploitation of the vulnerability may allow an attacker to cause a denial of service...

6.3CVSS7.1AI score0.00366EPSS
Exploits0
Wolfi
Wolfi
added 2025/11/18 1:47 p.m.8 views

GHSA-9MJ6-HXHV-W67J vulnerabilities

Vulnerabilities for packages: argo-events, grafana-alloy, opentelemetry-collector-contrib, sqlexporter, telegraf, amazon-cloudwatch-agent, dapr, bento, jitsucom-bulker, splunk-otel-collector, cluster-api-aws-controller...

5.3AI score
Exploits0
Chainguard
Chainguard
added 2025/11/18 1:27 p.m.10 views

CVE-2025-63811 vulnerabilities

Vulnerabilities for packages: dapr-fips, cluster-api-aws-controller-fips, bento, splunk-otel-collector-fips, vault, argo-events-fips, amazon-cloudwatch-agent, amazon-cloudwatch-agent-fips, grafana-alloy, vault-fips, sqlexporter-fips, telegraf, splunk-otel-collector, cluster-api-aws-controller,...

7.5CVSS7.2AI score0.00248EPSS
Exploits1
Wolfi
Wolfi
added 2024/09/03 7:49 p.m.16 views

GHSA-JFVP-7X6P-H2PV vulnerabilities

Vulnerabilities for packages: grafana-alloy, grype, k8s-device-plugin, opentelemetry-collector-contrib, docker, k3s, ctop, buildah, syft, kubernetes, neuvector-scanner, cadvisor, podman, runc...

5.3AI score
Exploits0
Wolfi
Wolfi
added 2024/09/03 7:15 p.m.35 views

CVE-2024-45310 vulnerabilities

Vulnerabilities for packages: grafana-alloy, grype, k8s-device-plugin, opentelemetry-collector-contrib, docker, k3s, ctop, buildah, syft, kubernetes, neuvector-scanner, cadvisor, podman, runc...

3.6CVSS5.4AI score0.00317EPSS
Exploits0
OSV
OSV
added 2024/08/30 5:18 p.m.11 views

GO-2024-3102 OpenTelemetry Collector module AWS Firehose Receiver Authentication Bypass Vulnerability in github.com/open-telemetry/opentelemetry-collector-contrib/receiver/awsfirehosereceiver

OpenTelemetry Collector module AWS Firehose Receiver Authentication Bypass Vulnerability in github.com/open-telemetry/opentelemetry-collector-contrib/receiver/awsfirehosereceiver...

5.3CVSS5.2AI score0.00489EPSS
Exploits0References11
Wolfi
Wolfi
added 2024/07/30 10:18 a.m.30 views

GHSA-V23V-6JW2-98FQ vulnerabilities

Vulnerabilities for packages: policy-controller, apko, neuvector-sigstore-interface, grafana-alloy, grype, melange, guac, ctop, buildah, opentelemetry-collector, syft, wolfictl, dive, flux-image-reflector-controller, newrelic-infrastructure-agent, chartmuseum, helm, cadvisor, argo-workflows,...

5.3AI score
Exploits0
Wolfi
Wolfi
added 2024/06/11 5:16 p.m.115 views

CVE-2024-35255 vulnerabilities

Vulnerabilities for packages: policy-controller, argo-events, cortex, druid, py3-cassandra-medusa, harbor-registry, guac, opentelemetry-collector, flux-image-reflector-controller, hugo, restic, terragrunt, bank-vaults, tempo, argo-workflows, zarf, tekton-chains, zot, flyte, flux,...

5.5CVSS6.1AI score0.00788EPSS
Exploits0
Wolfi
Wolfi
added 2024/06/10 6:36 p.m.27 views

GHSA-87M9-RV8P-RGMG vulnerabilities

Vulnerabilities for packages: opentelemetry-collector-contrib, datadog-agent, opentelemetry-collector, spicedb, tempo...

5.3AI score
Exploits0
Chainguard
Chainguard
added 2024/04/30 9:39 a.m.12 views

GHSA-2CGQ-H8XW-2V5J vulnerabilities

Vulnerabilities for packages: opentelemetry-collector-contrib-fips, wolfictl, ctop, buildah, cadvisor, kubernetes, opentelemetry-collector-contrib, kubernetes-fips, grype, cadvisor-fips, neuvector-scanner...

5.3AI score
Exploits0
Chainguard
Chainguard
added 2024/04/26 4:15 a.m.46 views

CVE-2024-3154 vulnerabilities

Vulnerabilities for packages: opentelemetry-collector-contrib-fips, wolfictl, ctop, buildah, cadvisor, kubernetes, opentelemetry-collector-contrib, kubernetes-fips, grype, cadvisor-fips, neuvector-scanner...

7.2CVSS6.6AI score0.01418EPSS
Exploits0
Rows per page
Query Builder