Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/05/01 6:4 p.m.4 views

CVE-2023-33199

Rekor's goals are to provide an immutable tamper resistant ledger of metadata generated within a software projects supply chain. A malformed proposed entry of the intoto/v0.0.2 type can cause a panic on a thread within the Rekor process. The thread is recovered so the client receives a 500 error...

5.3CVSS6.6AI score0.0067EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2023/08/30 3:15 p.m.48 views

CVE-2023-33199 affecting package skopeo for versions less than 1.12.0-3

CVE-2023-33199 affecting package skopeo for versions less than 1.12.0-3. An upgraded version of the package is available that resolves this issue...

5.3CVSS5.3AI score0.0067EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/06/16 12:0 a.m.18 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : rekor (SUSE-SU-2023:2515-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:2515-1 advisory. - updated to rekor 1.2.1 jscSLE-23476: - CVE-2023-33199: Fixed that malformed proposed intoto v0.0.2...

5.3CVSS6.1AI score0.0067EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/05/30 2:22 a.m.5 views

SUSE CVE-2023-33199

Rekor's goals are to provide an immutable tamper resistant ledger of metadata generated within a software projects supply chain. A malformed proposed entry of the intoto/v0.0.2 type can cause a panic on a thread within the Rekor process. The thread is recovered so the client receives a 500 error...

5.3CVSS6.9AI score0.0067EPSS
Exploits0References4
Chainguard
Chainguard
added 2023/05/26 11:15 p.m.45 views

CVE-2023-33199 vulnerabilities

Vulnerabilities for packages: skaffold, aactl...

5.3CVSS6.2AI score0.0067EPSS
Exploits0
NVD
NVD
added 2023/05/26 11:15 p.m.23 views

CVE-2023-33199

Rekor's goals are to provide an immutable tamper resistant ledger of metadata generated within a software projects supply chain. A malformed proposed entry of the intoto/v0.0.2 type can cause a panic on a thread within the Rekor process. The thread is recovered so the client receives a 500 error...

5.3CVSS5.2AI score0.0067EPSS
Exploits0References2
Wolfi
Wolfi
added 2023/05/26 11:15 p.m.51 views

CVE-2023-33199 vulnerabilities

Vulnerabilities for packages: aactl, skaffold...

5.3CVSS6.2AI score0.0067EPSS
Exploits0
Cvelist
Cvelist
added 2023/05/26 10:52 p.m.19 views

CVE-2023-33199 malformed proposed intoto v0.0.2 entries can cause a panic in Rekor

Rekor's goals are to provide an immutable tamper resistant ledger of metadata generated within a software projects supply chain. A malformed proposed entry of the intoto/v0.0.2 type can cause a panic on a thread within the Rekor process. The thread is recovered so the client receives a 500 error...

5.3CVSS5.4AI score0.0067EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/05/26 10:52 p.m.6 views

CVE-2023-33199 malformed proposed intoto v0.0.2 entries can cause a panic in Rekor

Rekor's goals are to provide an immutable tamper resistant ledger of metadata generated within a software projects supply chain. A malformed proposed entry of the intoto/v0.0.2 type can cause a panic on a thread within the Rekor process. The thread is recovered so the client receives a 500 error...

5.3CVSS5.2AI score0.0067EPSS
Exploits0References2
CVE
CVE
added 2023/05/26 10:52 p.m.443 views

CVE-2023-33199

CVE-2023-33199 concerns Rekor: a malformed proposed entry of the intoto/v0.0.2 type can cause a panic in a Rekor thread. The thread is recovered and the process returns a 500 error, with availability impact described as minimal. A fix is available in Rekor v1.2.0, and upgrade is advised. The conn...

5.3CVSS5AI score0.0067EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/05/26 10:52 p.m.20 views

CVE-2023-33199 malformed proposed intoto v0.0.2 entries can cause a panic in Rekor

Rekor's goals are to provide an immutable tamper resistant ledger of metadata generated within a software projects supply chain. A malformed proposed entry of the intoto/v0.0.2 type can cause a panic on a thread within the Rekor process. The thread is recovered so the client receives a 500 error...

5.3CVSS5.2AI score0.0067EPSS
Exploits0References4
Rows per page
Query Builder