PyPI package
signify
pkg:pypi/signify
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-70887 | Hig | 8.8 | < 0.9.2 | 0.9.2 | Mar 25, 2026 | An issue in ralphje Signify before v.0.9.2 allows a remote attacker to escalate privileges via the signed_data.py and the context.py components |
- affected < 0.9.2fixed 0.9.2
An issue in ralphje Signify before v.0.9.2 allows a remote attacker to escalate privileges via the signed_data.py and the context.py components