CVE-2026-42191
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
6.5 / 10
Vulnerability Description
OpenTelemetry's disk retry default temp path enables local blob injection via OTLP Exporter
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
nuget
Product
OpenTelemetry.Exporter.OpenTelemetryProtocol
External References
- https://github.com/open-telemetry/opentelemetry-dotnet/security/advisories/GHSA-4625-4j76-fww9
- https://github.com/open-telemetry/opentelemetry-dotnet/pull/7106
- https://github.com/open-telemetry/opentelemetry-dotnet/commit/78dffdc5ebdf3dc090fdb94e3f1a32d3d1e26dfd
- https://github.com/advisories/GHSA-4625-4j76-fww9
Discussion (0)
Add Comment
No comments yet. Be the first!