Vulnerabilities > Linuxfoundation > THE Update Framework > 0.11.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-10-19 | CVE-2021-41131 | Path Traversal vulnerability in Linuxfoundation the Update Framework python-tuf is a Python reference implementation of The Update Framework (TUF). | 8.8 |
2020-09-09 | CVE-2020-15163 | Insufficient Verification of Data Authenticity vulnerability in Linuxfoundation the Update Framework Python TUF (The Update Framework) reference implementation before version 0.12 it will incorrectly trust a previously downloaded root metadata file which failed verification at download time. | 4.9 |
2020-02-05 | CVE-2020-6174 | Improper Verification of Cryptographic Signature vulnerability in Linuxfoundation the Update Framework TUF (aka The Update Framework) through 0.12.1 has Improper Verification of a Cryptographic Signature. | 7.5 |
2020-01-14 | CVE-2020-6173 | Resource Exhaustion vulnerability in Linuxfoundation the Update Framework TUF (aka The Update Framework) 0.7.2 through 0.12.1 allows Uncontrolled Resource Consumption. | 5.0 |