Sigstore Sigstore-python

2 CVEs affecting Sigstore Sigstore-python. Latest disclosed: 2026-01-26. Critical: 0, High: 0.

Top CVEs affecting Sigstore Sigstore-python
CVESeverityScorePublishedSummary
CVE-2026-24408Unrated2026-01-26sigstore-python is a Python tool for generating and verifying Sigstore signatures. Prior to version 4.2.0, the sigstore-python OAuth authentication flow is sus…
CVE-2024-556552024-12-10sigstore-python is a Python tool for generating and verifying Sigstore signatures. Versions of sigstore-python newer than 2.0.0 but prior to 3.6.0 perform insu…