EUVD-2022-6209

Malicious code in bioql PyPI...

AZL-58857 CVE-2025-29786 affecting package ig for versions less than 0.37.0-3

Expr is an expression language and expression evaluation for Go. Prior to version 1.17.0, if the Expr expression parser is given an unbounded input string, it will attempt to compile the entire string and generate an Abstract Syntax Tree AST node for each part of the expression. In scenarios wher...

CVE-2022-33082

A flaw was found in the Open Policy Agent, where it is vulnerable to a denial of service caused by an issue in the AST parser ast/compile.go. This flaw allows an attacker to cause a denial of service by sending specially-crafted input...

GO-2022-0574 Denial of service in github.com/open-policy-agent/opa

An issue in the AST parser of Open Policy Agent makes it possible for attackers to cause a Denial of Service attack from a crafted input...

Denial of service in Open Policy Agent

An issue in the AST parser ast/compile.go of Open Policy Agent v0.10.2 allows attackers to cause a Denial of Service DoS via a crafted input...

GHSA-2M4X-4Q9J-W97G Denial of service in Open Policy Agent

An issue in the AST parser ast/compile.go of Open Policy Agent v0.10.2 allows attackers to cause a Denial of Service DoS via a crafted input...

CVE-2022-33082

An issue in the AST parser ast/compile.go of Open Policy Agent v0.10.2 allows attackers to cause a Denial of Service DoS via a crafted input...

CVE-2022-33082

An issue in the AST parser ast/compile.go of Open Policy Agent v0.10.2 allows attackers to cause a Denial of Service DoS via a crafted input...

CVE-2022-33082

An issue in the AST parser ast/compile.go of Open Policy Agent v0.10.2 allows attackers to cause a Denial of Service DoS via a crafted input...

Input validation

An issue in the AST parser ast/compile.go of Open Policy Agent v0.10.2 allows attackers to cause a Denial of Service DoS via a crafted input...

CVE-2022-33082

An issue in the AST parser ast/compile.go of Open Policy Agent v0.10.2 allows attackers to cause a Denial of Service DoS via a crafted input...

CVE-2022-33082

CVE-2022-33082 affects Open Policy Agent (OPA). The issue is in the AST parser (ast/compile.go) and can cause a Denial of Service when processing specially crafted input, specifically for OPA v0.10.2. Multiple connected sources corroborate a DoS risk from the AST parser, with no public details on...

Open Policy Agent 安全漏洞

Open Policy Agent is an open source, general-purpose policy engine that enables unified, context-aware policy enforcement across the entire stack. A security vulnerability exists in Open Policy Agent v0.10.2, which stems from an issue in the AST parser ast/compile.go that allows an attacker to...

Out of bounds memory access in github.com/open-policy-agent/opa

An issue in the component ast/parser.go of Open Policy Agent v0.39.0 causes the application to incorrectly interpret every expression, causing a Denial of Service DoS via triggering out-of-range memory access...