Skip to main content
Loading…
    CVE-2024-53267 — sigstore-java is a sigstore java client for interacting with sigstore infrastructure. sigstore-java has insufficient verification for a situation where a validly-signed but "mismatched" bundle — CVE Database · The Intelligence Room