Vulnerabilities > Sigstore > Cosign
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-04-10 | CVE-2024-29902 | Allocation of Resources Without Limits or Throttling vulnerability in Sigstore Cosign Cosign provides code signing and transparency for containers and binaries. | 5.9 |
| 2024-04-10 | CVE-2024-29903 | Allocation of Resources Without Limits or Throttling vulnerability in Sigstore Cosign Cosign provides code signing and transparency for containers and binaries. | 7.5 |
| 2023-11-07 | CVE-2023-46737 | Infinite Loop vulnerability in Sigstore Cosign Cosign is a sigstore signing tool for OCI containers. | 5.3 |
| 2022-09-14 | CVE-2022-36056 | Unspecified vulnerability in Sigstore Cosign Cosign is a project under the sigstore organization which aims to make signatures invisible infrastructure. | 5.5 |
| 2022-08-04 | CVE-2022-35929 | Unspecified vulnerability in Sigstore Cosign cosign is a container signing and verification utility. | 9.8 |
| 2022-02-18 | CVE-2022-23649 | Unspecified vulnerability in Sigstore Cosign Cosign provides container signing, verification, and storage in an OCI registry for the sigstore project. | 3.3 |