VDB
CGA-57q9-hvx7-g6p3
CGA-57q9-hvx7-g6p3
REJECTED
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Chainguard | sigstore-scaffolding-ctlog-verifyfulcio | 0, 0, 0 |
| Wolfi | sigstore-scaffolding-cloudsqlproxy | 0, 0, 0 |
| Chainguard | sigstore-scaffolding-cloudsqlproxy | 0, 0, 0 |
| Wolfi | sigstore-scaffolding-tuf-server | 0, 0, 0 |
| Wolfi | sigstore-scaffolding-tuf-createsecret | 0, 0, 0 |
| Chainguard | sigstore-scaffolding-rekor-createsecret | 0, 0, 0 |
| Chainguard | sigstore-scaffolding | 0, 0, 0 |
| Wolfi | sigstore-scaffolding-fulcio-createcerts | 0, 0, 0 |
| Chainguard | sigstore-scaffolding-trillian-updatetree | 0, 0, 0 |
| Wolfi | sigstore-scaffolding-ctlog-verifyfulcio | 0, 0, 0 |
| Chainguard | sigstore-scaffolding-getoidctoken | 0, 0, 0 |
| Wolfi | sigstore-scaffolding-ctlog-managectroots | 0, 0, 0 |
| Wolfi | sigstore-scaffolding-trillian-createtree | 0, 0, 0 |
| Wolfi | sigstore-scaffolding-ctlog-createctconfig | 0, 0, 0 |
| Chainguard | sigstore-scaffolding-fulcio-createcerts | 0, 0, 0 |
| Wolfi | sigstore-scaffolding-tsa-createcertchain | 0, 0, 0 |
| Chainguard | sigstore-scaffolding-trillian-createtree | 0, 0, 0 |
| Wolfi | sigstore-scaffolding | 0, 0, 0 |
| Chainguard | sigstore-scaffolding-trillian-createdb | 0, 0, 0 |
| Chainguard | sigstore-scaffolding-ctlog-createctconfig | 0, 0, 0 |
…and 8 more
Exploit Intelligence
- Proof-of-concept for CVE-2025-22870 demonstrating HTTP proxy bypass in vulnerable versions (<0.36.0) of golang.org/x/net/http/httpproxy. Exploits improper IPv6 zone ID parsing to evade NO_PROXY restrictions, enabling proxy bypass and potential SSRF under misconfigured environments. (github-poc)
- CHANGELOG-v1.73.1.yml (github-poc)
- scan.openvex.json (github-poc)
Timeline
- Jan 28, 2026 CVE Rejected