CVE-2026-40891 | open-telemetry opentelemetry-dotnet up to 1.15.2 OpenTelemetry Protocol memory allocation (GHSA-mr8r-92fq-pj8p)

A vulnerability identified as problematic has been detected in open-telemetry opentelemetry-dotnet up to 1.15.2. The impacted element is an unknown function of the component OpenTelemetry Protocol Handler. This manipulation causes uncontrolled memory allocation.

The identification of this vulnerability is CVE-2026-40891. The attack needs to be done within the local network. There is no exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More