CVE-2026-47256

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score

5.3 / 10

Vulnerability Description

opentelemetry-collector-contrib sentryexporter: Path traversal in Sentry exporter via attacker-controlled service.name reaches privileged Sentry API endpoints with operator bearer token

Vulnerability Details

Published Date

June 18, 2026

Last Modified

June 18, 2026

Source

GitHub

Vendor

Product

github.com/open-telemetry/opentelemetry-collector-contrib/exporter/sentryexporter

External References

https://github.com/open-telemetry/opentelemetry-collector-contrib/security/advisories/GHSA-4jvg-4jfx-fmhc
https://github.com/advisories/GHSA-4jvg-4jfx-fmhc

CVE-2026-47256

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment