sigstore Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by sigstore
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Input Validation Flaw in Sigstore Timestamp Authority Affects Multiple Versions
CVE-2025-66564SigstoreTimestamp-authority7.5HIGHParsing Vulnerability in Fulcio Certificate Authority from Sigstore
CVE-2025-66506SigstoreFulcio7.5HIGHSigstore Go Library Vulnerable to Denial of Service Attack
CVE-2024-45395SigstoreSigstore-go7.5HIGHCosign Patches Denial of Service Vulnerability Affecting All Services on Impacted Machines
CVE-2024-29903SigstoreCosign7.5HIGHRekor's compressed archives can result in OOM conditions
CVE-2023-30551SigstoreRekor7.5HIGHAbility to bypass attestation verification in sigstore PolicyController
CVE-2022-35930SigstorePolicy-controller7.1HIGHFalse positive signature verification in cosign
CVE-2022-35929SigstoreCosign7.1HIGH