Vulnerabilities > Sigstore > Cosign > Low

DATE CVE VULNERABILITY TITLE RISK
2022-02-18 CVE-2022-23649 Improper Certificate Validation vulnerability in Sigstore Cosign
Cosign provides container signing, verification, and storage in an OCI registry for the sigstore project.
local
low complexity
sigstore CWE-295
3.3