VYPR

NuGet package

opentelemetry.api

pkg:nuget/opentelemetry.api

Vulnerabilities (2)

  • CVE-2026-40894MedApr 23, 2026
    affected >= 0.5.0-beta.2, < 1.15.3fixed 1.15.3

    OpenTelemetry dotnet is a dotnet telemetry framework. In OpenTelemetry.Api 0.5.0-beta.2 to 1.15.2 and OpenTelemetry.Extensions.Propagators 1.3.1 to 1.15.2, The implementation details of the baggage, B3 and Jaeger processing code in the OpenTelemetry.Api and OpenTelemetry.Extensio

  • CVE-2025-27513HigMar 5, 2025
    affected >= 1.11.0, < 1.11.2fixed 1.11.2

    OpenTelemetry dotnet is a dotnet telemetry framework. A vulnerability in OpenTelemetry.Api package 1.10.0 to 1.11.1 could cause a Denial of Service (DoS) when a tracestate and traceparent header is received. Even if an application does not explicitly use trace context propagation