Openpolicyagent - Open Policy Agent CVE

Filtered by vendor Openpolicyagent Subscribe

Filtered by product Open Policy Agent

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-33082	1 Openpolicyagent	1 Open Policy Agent	2022-07-12	5.0 MEDIUM	7.5 HIGH
An issue in the AST parser (ast/compile.go) of Open Policy Agent v0.10.2 allows attackers to cause a Denial of Service (DoS) via a crafted input.
CVE-2022-28946	1 Openpolicyagent	1 Open Policy Agent	2022-05-26	5.0 MEDIUM	7.5 HIGH
An issue in the component ast/parser.go of Open Policy Agent v0.39.0 causes the application to incorrectly interpret every expression, causing a Denial of Service (DoS) via triggering out-of-range memory access.

Vulnerabilities (CVE)