Denial Of Service (DoS)

github.com/sigstore/fulcio is vulnerable to Denial of Service DoS. The vulnerability is due to inefficient handling of untrusted input in the extractIssuerURL function, which allows an attacker to supply a token with excessive period characters to trigger high memory allocations and degrade servi...

GHSA-59JP-PJ84-45MR Fulcio is vulnerable to Server-Side Request Forgery (SSRF) via MetaIssuer Regex Bypass

Security Disclosure: SSRF via MetaIssuer Regex Bypass Summary Fulcio's metaRegex function uses unanchored regex, allowing attackers to bypass MetaIssuer URL validation and trigger SSRF to arbitrary internal services. Since the SSRF only can trigger GET requests, the request cannot mutate state. T...

UBUNTU-CVE-2026-22772

Fulcio is a certificate authority for issuing code signing certificates for an OpenID Connect OIDC identity. Prior to 1.8.5, Fulcio's metaRegex function uses unanchored regex, allowing attackers to bypass MetaIssuer URL validation and trigger SSRF to arbitrary internal services. Since the SSRF on...

CVE-2026-22772

Fulcio (OIDC code-signing CA) prior to 1.8.5 uses an unanchored regex in metaRegex(), allowing an attacker to bypass MetaIssuer URL validation and trigger Server-Side Request Forgery (SSRF) to internal services. The vulnerability can enable blind SSRF probes to internal networks or services reach...

PT-2026-2303

Name of the Vulnerable Software and Affected Versions Fulcio versions prior to 1.8.5 Description Fulcio is a certificate authority for issuing code signing certificates for an OpenID Connect OIDC identity. The metaRegex function uses unanchored regular expressions, potentially allowing attackers ...