All 2 CVE vulnerabilities found in notation, with AI-generated Chinese analysis, references, and POCs.
Vendor: notaryproject
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-33958 | Default `maxSignatureAttempts` in `notation verify` enables an endless data attack in notation CWE-400 | 5.4 | Medium | 2023-06-06 |
| CVE-2023-33957 | Denial of service from high number of artifact signatures in notation CWE-400 | 2.6 | Low | 2023-06-06 |
All 2 known CVE vulnerabilities affecting notation with full Chinese analysis, references, and POCs where available.