2 matches found
EUVD-2022-2733
Malicious code in bioql PyPI...
CVE-2022-29173 No protection against rollback attacks in go-tuf
go-tuf is a Go implementation of The Update Framework TUF. go-tuf does not correctly implement the client workflow for updating the metadata files for roles other than the root role. Specifically, checks for rollback attacks are not implemented correctly meaning an attacker can cause clients to...