Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:nuget/OpenTelemetry.Exporter.Zipkin@1.3.2
Typenuget
Namespace
NameOpenTelemetry.Exporter.Zipkin
Version1.3.2
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version1.15.3
Latest_non_vulnerable_version1.15.3
Affected_by_vulnerabilities
0
url VCID-jndd-511q-v7bp
vulnerability_id VCID-jndd-511q-v7bp
summary OpenTelemetry.Exporter.Zipkin is the .NET Zipkin exporter for OpenTelemetry. In versions 1.15.2 and earlier, the Zipkin exporter remote endpoint cache accepts unbounded key growth derived from span attributes. In high-cardinality scenarios, a process using Zipkin export for client or producer spans could experience avoidable memory growth under sustained unique remote endpoint values, increasing process memory usage over time and degrading availability. This issue is fixed in version 1.15.3, which introduces a bounded, thread-safe LRU cache for remote endpoints with a fixed maximum size.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-41310
reference_id
reference_type
scores
0
value 0.00018
scoring_system epss
scoring_elements 0.04706
published_at 2026-06-13T12:55:00Z
1
value 0.00018
scoring_system epss
scoring_elements 0.04699
published_at 2026-06-14T12:55:00Z
2
value 0.00018
scoring_system epss
scoring_elements 0.04719
published_at 2026-06-11T12:55:00Z
3
value 0.00018
scoring_system epss
scoring_elements 0.0472
published_at 2026-06-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-41310
1
reference_url https://github.com/open-telemetry/opentelemetry-dotnet
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/open-telemetry/opentelemetry-dotnet
2
reference_url https://github.com/open-telemetry/opentelemetry-dotnet/commit/c724f4bd6fd88e9a599af1668bf7af9487155b62
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/open-telemetry/opentelemetry-dotnet/commit/c724f4bd6fd88e9a599af1668bf7af9487155b62
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-41310
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-41310
4
reference_url https://github.com/open-telemetry/opentelemetry-dotnet/pull/7081
reference_id 7081
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-07T13:18:40Z/
url https://github.com/open-telemetry/opentelemetry-dotnet/pull/7081
5
reference_url https://github.com/advisories/GHSA-88hf-wf7h-7w4m
reference_id GHSA-88hf-wf7h-7w4m
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-88hf-wf7h-7w4m
6
reference_url https://github.com/open-telemetry/opentelemetry-dotnet/security/advisories/GHSA-88hf-wf7h-7w4m
reference_id GHSA-88hf-wf7h-7w4m
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-05-07T13:18:40Z/
url https://github.com/open-telemetry/opentelemetry-dotnet/security/advisories/GHSA-88hf-wf7h-7w4m
fixed_packages
0
url pkg:nuget/OpenTelemetry.Exporter.Zipkin@1.15.3
purl pkg:nuget/OpenTelemetry.Exporter.Zipkin@1.15.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/OpenTelemetry.Exporter.Zipkin@1.15.3
aliases CVE-2026-41310, GHSA-88hf-wf7h-7w4m
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jndd-511q-v7bp
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:nuget/OpenTelemetry.Exporter.Zipkin@1.3.2