CVE-2026-41433

Name of the Vulnerable Software and Affected Versions OpenTelemetry eBPF Instrumentation versions 0.4.0 through 0.7.x

Description A flaw in the Java agent injection path allows a local attacker controlling a Java workload to overwrite arbitrary host files when Java injection is enabled and the instrumentation is running with elevated privileges. The injector trusted the TMPDIR variable from the target process and used unsafe file creation semantics, which enables filesystem boundary escape and symlink-based file clobbering.

Recommendations Update to version 0.8.0.