DevSecOps

go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc - high issue in <0.46.0 - CVE-2023-47108

Description

Package go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc which comes from package manager golang is found vulnerable with high severity, please avoid version <0.46.0 in order to mitigate.

Recommended Actions

Avoid using versions <0.46.0 for package go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc

Coverage

FortiDevSec 24.3 or later

Version Updates

Date	Version	Status	Detail
2024-09-30	24.30000	New	None

ID	20436
CVE ID
CWE ID	CWE-770
OWASP
Package Source	golang
Affected Language	Go
Date	Feb 16, 2024
Risk

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

DevSecOps

go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc - high issue in <0.46.0 - CVE-2023-47108

Description

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

DevSecOps

go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc - high issue in <0.46.0 - CVE-2023-47108

Description

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center