opentelemetry-java-instrumentation — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in opentelemetry-java-instrumentation, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-33701	OpenTelemetry: Unsafe Deserialization in RMI Instrumentation may Lead to Remote Code Execution CWE-502	8.1	-	2026-03-27
CVE-2023-39951	Instrumentation for AWS SDK v2 captures email content when using Amazon Simple Email Service (SES) v1 API, exposing that content to the telemetry backend CWE-200	6.5	Medium	2023-08-08

All 2 known CVE vulnerabilities affecting opentelemetry-java-instrumentation with full Chinese analysis, references, and POCs where available.