BIT-cosign-2026-22703 — Vulnetix

BIT-cosign-2026-22703 PUBLISHED CVSS 5.5 MEDIUM

Cosign verification accepts any valid Rekor entry under certain conditions

Risk Scores

CVSS v3.1

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Affected Products

Vendor	Product	Versions
Bitnami	cosign	0, 3.0.0, 0

Timeline

Jan 13, 2026 CVE Published
Jan 13, 2026 CVE Updated

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›