1. OpenTelemetry Prometheus Exporter Vulnerability Patched: CVE-2026-44902 Allows Denial-of-Service via Malformed HTTP Request
A critical security vulnerability has been identified in the OpenTelemetry JavaScript Prometheus exporter, potentially allowing remote attackers to crash affected processes by sending specially crafted HTTP requests. The flaw, tracked as CVE-2026-44902 and documented under GHSA-q7rr-3cgh-j5r3, specifically affects the ...