Lucene search
K

6 matches found

OSV
OSV
added 2024/04/12 7:17 a.m.28 views

BIT-COSIGN-2024-29902 Cosign vulnerable to system-wide denial of service via malicious attachments

Cosign provides code signing and transparency for containers and binaries. Prior to version 2.2.4, a remote image with a malicious attachment can cause denial of service of the host machine running Cosign. This can impact other services on the machine that rely on having memory available such as ...

5.9CVSS5.4AI score0.00658EPSS
Exploits0References6
OSV
OSV
added 2024/04/11 5:5 p.m.30 views

GHSA-88JX-383Q-W4QC Cosign malicious attachments can cause system-wide denial of service

Summary A remote image with a malicious attachment can cause denial of service of the host machine running Cosign. This can impact other services on the machine that rely on having memory available such as a Redis database which can result in data loss. It can also impact the availability of othe...

4.2CVSS5.2AI score0.00658EPSS
Exploits0References7
NVD
NVD
added 2024/04/10 11:15 p.m.18 views

CVE-2024-29902

Cosign provides code signing and transparency for containers and binaries. Prior to version 2.2.4, a remote image with a malicious attachment can cause denial of service of the host machine running Cosign. This can impact other services on the machine that rely on having memory available such as ...

5.9CVSS4.7AI score0.00658EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/04/10 10:28 p.m.27 views

CVE-2024-29902 Cosign vulnerable to system-wide denial of service via malicious attachments

Cosign provides code signing and transparency for containers and binaries. Prior to version 2.2.4, a remote image with a malicious attachment can cause denial of service of the host machine running Cosign. This can impact other services on the machine that rely on having memory available such as ...

4.2CVSS5AI score0.00658EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/04/10 10:28 p.m.18 views

CVE-2024-29902 Cosign vulnerable to system-wide denial of service via malicious attachments

Cosign provides code signing and transparency for containers and binaries. Prior to version 2.2.4, a remote image with a malicious attachment can cause denial of service of the host machine running Cosign. This can impact other services on the machine that rely on having memory available such as ...

4.2CVSS4.8AI score0.00658EPSS
Exploits0References5
OSV
OSV
added 2024/04/10 10:28 p.m.24 views

CVE-2024-29902 Cosign vulnerable to system-wide denial of service via malicious attachments

Cosign provides code signing and transparency for containers and binaries. Prior to version 2.2.4, a remote image with a malicious attachment can cause denial of service of the host machine running Cosign. This can impact other services on the machine that rely on having memory available such as ...

4.2CVSS5.3AI score0.00658EPSS
Exploits0References7
Rows per page
Query Builder