VYPR
Moderate severity6.5NVD Advisory· Published Jul 1, 2026

sigstore-js: sigstore-js: Insufficient verification of data authenticity allows timestamp manipulation

CVE-2026-48816

Description

sigstore-js: sigstore-js: Insufficient verification of data authenticity allows timestamp manipulation

Affected products

3

Patches

Vulnerability mechanics

News mentions

0

No linked articles in our index yet.