9 Total advisories
9 Vulnerabilities
0 Malware
Vulnerabilities
UNKNOWN
CVE-2026-24122
Cosign considered signatures valid with expired intermediate certificates when transparency log verification is skipped in github.com/sigstore/cosign
LOW 3.1
CVE-2023-46737
Cosign vulnerable to possible endless data attack from attacker-controlled registry
UNKNOWN
CVE-2023-46737
Denial of service attack from remote registry in github.com/sigstore/cosign
MEDIUM 5.5
CVE-2026-22703
Cosign verification accepts any valid Rekor entry under certain conditions
MEDIUM 4.2
CVE-2024-29902
Cosign malicious attachments can cause system-wide denial of service
UNKNOWN
CVE-2024-29902
Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign
UNKNOWN
CVE-2026-22703
Cosign verification accepts any valid Rekor entry under certain conditions in github.com/sigstore/cosign
MEDIUM 4.2
CVE-2024-29903
Cosign malicious artifacts can cause machine-wide DoS
UNKNOWN
CVE-2024-29903
Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign
Ready to move
Start Securing
Free, no credit card | First findings in minutes