CVE-2026-44967: OpenTelemetry-cpp Unbounded HTTP Response Fl
🟡 Medium | Source: Microsoft Security Response Center CVE-2026-44967 is a vulnerability in the opentelemetry-cpp library affecting its OTLP HTTP exporters, which fail to impose any limit on the size of HTTP responses they read. This means a malicious or compromised server could send an oversized response, potentially causing excessive memory consumption or a denial of service in the consuming application. The issue is particularly relevant to Azure environments where OpenTelemetry is used for observability and telemetry collection. ...