Known vulnerabilities in Sigstore Cosign
3.0.6
2.6.3
3.0.5
3.0.4
2.6.2
3.0.3
3.0.2
3.0.1
3.0.0
2.6.1
2.6.0
2.5.3
2.5.2
2.5.1
2.5.0
2.4.3
2.4.2
2.4.1
2.4.0
2.3.0
2.2.4
1.13.6
1.13.5
1.13.4
1.13.3
2.2.3
2.2.2
1.13.2
2.2.1
2.2.0
2.1.1
2.1.0
2.0.2
2.0.1
2.0.0
2.0.0-rc.3
2.0.0-rc.2
2.0.0-rc.1
2.0.0-rc.0
1.10.0-rc.1
1.13.1
1.13.0
1.12.1
1.12.0
1.11.1
1.11.0
1.10.1
1.10.0
1.9.0
1.8.0
1.7.2
1.7.1
1.7.0
1.6.0
1.5.2
1.5.1
1.5.0
1.4.1
1.4.0
1.3.1
1.3.0
1.2.1
1.2.0
1.1.0
1.0.1
1.0.0
0.6.0
0.5.0
0.4.0
0.3.1
0.3.0
0.2.0
0.1.0
Security bulletins (8)
| Secuity bulletin | Severity | Status | Published |
|---|---|---|---|
| SB20260425214: Improper Certificate Validation in Cosign | Low | 25.04.2026 | |
| SB20260425213: Insufficient verification of data authenticity in Cosign | Low | 25.04.2026 | |
| SB2026040725: Security features bypass in Cosign | Medium | 07.04.2026 | |
| SB2024050714: Multiple vulnerabilities in Sigstore Cosign | Medium | 07.05.2024 | |
| SB2023110924: Denial of service in Cosign | Low | 09.11.2023 | |
| SB2022100442: Security restrictions bypass in Cosign | Medium | 04.10.2022 | |
| SB2022080445: Input validation error in Cosign | Medium | 04.08.2022 | |
| SB2022021849: Insufficient verification of data authenticity in Cosign | Low | 18.02.2022 |