CVE-2026-45683 PUBLISHED

OpenTelemetry eBPF Instrumentation: Java TLS ioctl kprobe allows kernel memory disclosure

Assigner: GitHub_M
Reserved: 12.05.2026 Published: 02.06.2026 Updated: 02.06.2026

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, the Java TLS ioctl probe reads user-controlled ioctl pointers with bpf_probe_read instead of bpf_probe_read_user. An instrumented local process can therefore point OBI at kernel memory and cause that memory to be copied into telemetry. This issue has been patched in version 0.9.0.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
CVSS Score: 3.8

Attack Vector	Local	Scope	Changed
Attack Complexity	Low	Confidentiality Impact	Low
Privileges Required	Low	Integrity Impact	None
User Interaction	None	Availability Impact	None

CVSS 3.1

Product Status

Vendor	open-telemetry
Product	opentelemetry-ebpf-instrumentation
Versions	Version < 0.9.0 is affected

References

Problem Types

CWE-127: Buffer Under-read CWE
CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE