PT-2026-42043

🗓️ 19 May 2026 00:00:00Reported by Positive TechnologiesType

ptsecurity

ptsecurity🔗 dbugs.ptsecurity.com👁 6 Views

Untrusted users can cause denial of service by long parser queries; a parse node limit fixes this.

Reporter	Title	Published	Views	Family All 6
CVE	CVE-2026-46374	19 May 202620:10	–	cve
Github Security Blog	SQLFluff: Uncontrolled Resource Consumption in SQLFluff Parser	19 May 202620:10	–	github
OSV	GHSA-73JC-5MRQ-PRW7 SQLFluff: Uncontrolled Resource Consumption in SQLFluff Parser	19 May 202620:10	–	osv
Snyk	Allocation of Resources Without Limits or Throttling	19 May 202620:10	–	snyk
Snyk	Allocation of Resources Without Limits or Throttling	19 May 202620:10	–	snyk
vulnersOsv	alvin-cli (>=0.0.1a0 <=1.3.0rc1), apache-airflow-providers-fastetl (>=0.0.36 <=0.0.39) +87 more potentially affected by CVE-2026-46374 via sqlfluff (>=0.11.2 <=4.1.0)	19 May 202620:10	–	vulnersosv

Source	Link
github	www.github.com/sqlfluff/sqlfluff/security/advisories/GHSA-73jc-5mrq-prw7
reddit	www.reddit.com/r/cybersecurity/comments/1tkfk0l/14_npmpypiai_supplychain_threats_today_20260522
reddit	www.reddit.com/r/VulnMatter/comments/1tiopdo/resumen_diario_de_vulnerabilidades_20052026
reddit	www.reddit.com/r/cybersecurity/comments/1to25wg/14_npmpypiai_supplychain_threats_today_20260526
github	www.github.com/sqlfluff/sqlfluff
osv	www.osv.dev/vulnerability/GHSA-73jc-5mrq-prw7
reddit	www.reddit.com/r/VulnMatter/comments/1tjljj9/resumen_diario_de_vulnerabilidades_21052026

26 May 2026 00:00Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.17.5

untrusted users denial of service parser queries parse node limit