sigstore-java — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in sigstore-java, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-54140	sigstore-java has a vulnerability with bundle verification CWE-20	-	-	2024-12-05
CVE-2024-53267	Vulnerability with bundle verification in sigstore-java CWE-347	5.5	Medium	2024-11-26

All 2 known CVE vulnerabilities affecting sigstore-java with full Chinese analysis, references, and POCs where available.