Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

rekor — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in rekor, with AI-generated Chinese analysis, references, and POCs.

Vendor: sigstore

CVE IDTitleCVSSSeverityPublished
CVE-2026-24117 Rekor affected by Server-Side Request Forgery (SSRF) via provided public key URL CWE-918 5.3 Medium2026-01-22
CVE-2026-23831 Rekor COSE v0.0.1 Canonicalize crashes when passed empty Message CWE-476 5.3 Medium2026-01-22
CVE-2023-33199 malformed proposed intoto v0.0.2 entries can cause a panic in Rekor CWE-617 5.3 Medium2023-05-26
CVE-2023-30551 Rekor's compressed archives can result in OOM conditions CWE-770 7.5 High2023-05-08

All 4 known CVE vulnerabilities affecting rekor with full Chinese analysis, references, and POCs where available.