Cosign provides container signing, verification, and storage in an OCI registry for the sigstore project. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.
Information Disclosure
Cosign
NVD
GitHub
CVSS 3.1
3.3
EPSS
0.2%