VDB

GO-2025-3660

GO-2025-3660 PUBLISHED

OPA server Data API HTTP path injection of Rego in github.com/open-policy-agent/opa

Affected Products

VendorProductVersions
github.comopen-policy-agent/opa0, 0

Timeline

  • May 5, 2025 CVE Published
  • Feb 4, 2026 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›