Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2022/10/02 12:0 a.m.27 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : cosign (SUSE-SU-2022:3486-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3486-1 advisory. Updated to version 1.12.0 jscSLE-23879: - CVE-2022-36056: Fixed verify-blob could successfully verify an...

5.5CVSS6.1AI score0.00145EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2022/10/02 12:0 a.m.19 views

openSUSE: Security Advisory for cosign (SUSE-SU-2022:3486-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.5CVSS5.9AI score0.00145EPSS
Exploits1References2
OSV
OSV
added 2022/10/01 11:33 a.m.4 views

SUSE-SU-2022:3486-1 Security update for cosign

This update for cosign fixes the following issues: Updated to version 1.12.0 jscSLE-23879: - CVE-2022-36056: Fixed verify-blob could successfully verify an artifact when verification should have failed bsc1203430...

5.5CVSS5.4AI score0.00145EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2022/09/21 3:49 p.m.44 views

CVE-2022-36056

A vulnerability was found in cosign, where it incorrectly verified an artifact when the embedded rekorBundle does not reference the given signature. This flaw allows an attacker to exploit integrity and confidentiality...

5.5CVSS5.3AI score0.00145EPSS
Exploits1References4
Rows per page
Query Builder