EPSS
Percentile
36.8%
Open policy agent is vulnerable to Denial of Service. An attacker is able to crash the system via a maliciously crafted inputs via the abstract systax tree parser in ast/compile.go.
github.com/open-policy-agent/opa/blob/598176de326025451025225aca53e85708d5f1db/ast/compile.go#L1224
github.com/open-policy-agent/opa/commit/9444351c9b1f768750938ac70a262c209e9fe14a#diff-067a842cc5e1a348551f4c7656120105acedafb2faac6e7b7ff57b75c5349570