Open policy agent is vulnerable to Denial of Service. An attacker is able to crash the system via a maliciously crafted inputs via the abstract systax tree parser in ast/compile.go.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/open-policy-agent/opa | le | v0.10.5 | |
github.com/open-policy-agent/opa | le | v0.10.5 |