CVE-2026-42348— OpAMP client reads unbounded HTTP response bodies
Affected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| open-telemetry | opentelemetry-dotnet-contrib | < 0.2.0-alpha.1 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-42348
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
OpAMP client reads unbounded HTTP response bodies
Source: NVD (National Vulnerability Database)
Vulnerability Description
OpenTelemetry.OpAmp.Client is the OpAMP client for OpenTelemetry .NET. Prior to 0.2.0-alpha.1, when receiving responses from the OpAMP server over HTTP, the OpAMP client allocates an unbounded buffer to read all bytes from the server, with no upper-bound on the number of bytes consumed. This could cause memory exhaustion in the consuming application if the configured OpAMP server is attacker-controlled (or a network attacker can MitM the connection) and an extremely large body is returned in the response. This vulnerability is fixed in 0.2.0-alpha.1.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
未经控制的内存分配
Source: NVD (National Vulnerability Database)
Vulnerability Title
OpenTelemetry .NET Contrib 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
OpenTelemetry .NET Contrib是OpenTelemetry - CNCF开源的一个开源遥测数据收集与处理工具库。 OpenTelemetry .NET Contrib 0.2.0-alpha.1之前版本存在安全漏洞,该漏洞源于通过HTTP接收OpAMP服务器响应时分配无界缓冲区读取所有字节,可能导致内存耗尽。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| open-telemetry | opentelemetry-dotnet-contrib | < 0.2.0-alpha.1 | - |
II. Public POCs for CVE-2026-42348
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-42348
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same vendor: open-telemetry
- CVE-2026-42602
azureauthextension Authenticate method does not validate bea - CVE-2026-42191
OpenTelemetry.Exporter.OpenTelemetryProtocol: Disk retry def - CVE-2026-41484
OpenTelemetry.Exporter.OneCollector vulnerable to denial of - CVE-2026-41483
Unbounded HTTP response body read in OpenTelemetry.Resources - CVE-2026-41310
OpenTelemetry .NET Zipkin exporter has unbounded remote endp
Same weakness: CWE-789
- CVE-2026-44375
Nerdbank.MessagePack: Attacker-controlled stackalloc in Date - CVE-2026-42946
NGINX ngx_http_scgi_module and ngx_http_uwsgi_module vulnera - CVE-2021-47944
memono Notepad 4.2 Denial of Service via Buffer Overflow - CVE-2026-42241
ParquetSharp: Possible Stack Overflow When Reading a Parquet - CVE-2026-43868
Apache Thrift: Rust implementation vulnerable to CVE-2020-13
V. Comments for CVE-2026-42348
No comments yet