Lucene search
Sigstore-Go Security Vulnerabilities
cve
sigstore-go, a Go library for Sigstore signing and verification, is susceptible to a denial of service attack in versions prior to 0.6.1 when a verifier is provided a maliciously crafted Sigstore Bundle containing large amounts of verifiable data, in the form of signed transparency log entries, RFC...
7.5CVSS
3.8AI Score
0.001EPSS
2024-09-04 09:15 PM
28