Back to CVE List

CVE-2026-45680

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score
5.9 / 10
Vector String
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Vulnerability Description

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI replays BPF probe hits into histogram observations by looping once per recorded run count. On busy systems, the run-count delta can become very large, causing the metrics exporter to spend excessive CPU time in a tight loop every collection interval. This issue has been patched in version 0.9.0.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-400
Source
GitHub
Vendor
go
Product
go.opentelemetry.io/obi

External References

Discussion (0)

Add Comment

No comments yet. Be the first!