pkg:Go/github.com/notaryproject/notation

共 6 筆 CVEMEDIUM6

✅ 檢查你的版本

所有已知漏洞

  • MEDIUM6.5CVE-2023-33958Notation's default `maxSignatureAttempts` in `notation verify` enables an endless data attack in github.com/notaryproject/notation
    from 0, < 1.0.0-rc.6
  • MEDIUM6.5CVE-2023-33958Notation's default `maxSignatureAttempts` in `notation verify` enables an endless data attack in github.com/notaryproject/notation
    from 0, < 1.0.0-rc.6
  • MEDIUM5.7CVE-2023-33957Notation vulnerable to denial of service from high number of artifact signatures in github.com/notaryproject/notation
    from 0, < 1.0.0-rc.6
  • MEDIUM5.7CVE-2023-33957Notation vulnerable to denial of service from high number of artifact signatures in github.com/notaryproject/notation
    from 0, < 1.0.0-rc.6
  • MEDIUM4.0CVE-2024-23332Go package github.com/notaryproject/notation configured with permissive trust policies potentially susceptible to rollback attack from compromised registry
    from 0, <= 1.0.0
  • MEDIUM4.0CVE-2024-23332Go package github.com/notaryproject/notation configured with permissive trust policies potentially susceptible to rollback attack from compromised registry
    from 0