Perceptive Security
SOC/SIEM Consultancy
OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.1.0 to before version 0.9.0, malformed Mong…
Published:
1 June 2026 at 22:00:00
Alert date:
2 June 2026 at 17:02:02
Source:
nvd.nist.gov
Security Tools, Database & Storage, Network Infrastructure
CVE-2026-45685 affects OpenTelemetry eBPF Instrumentation versions 0.1.0 to before 0.9.0. Malformed MongoDB wire messages can trigger uncaught panics in the MongoDB TCP parser, allowing remote unauthenticated attackers to crash the telemetry agent and cause denial of service. The vulnerability occurs because the parser processes raw attacker-controlled network payloads before proper validation. A single crafted message can terminate telemetry collection for the affected process or node. The issue has been patched in version 0.9.0.
Technical details
Mitigation steps:
Affected products:
OpenTelemetry eBPF Instrumentation
Related links:
https://nvd.nist.gov/vuln/detail/CVE-2026-45685
https://github.com/open-telemetry/opentelemetry-ebpf-instrumentation/releases/tag/v0.9.0
https://github.com/open-telemetry/opentelemetry-ebpf-instrumentation/security/advisories/GHSA-j8p6-96vp-f3r9
Related CVE's:
Related threat actors:
IOC's:
This article was created with the assistance of AI technology by Perceptive.