Latest version: v2.3.0
| CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
|---|---|---|---|---|---|
| CVE-2023-32076 | 58654 |
In-toto 2.0.0 fixes a security issue: Configuration Read From Local D… |
|
MEDIUM | 5.5 |
| PVE-2023-58653 | 58653 |
In-toto 2.0.0 fixes a security issue: PGP trust model not (fully) con… |
|
- | - |
| PVE-2023-58647 | 58647 |
In-toto 2.0.0 fixes a security issue: Functionaries Do Not Perform Ve… |
|
- | - |
| CVE-2020-36242 | 41832 |
In-toto version 1.0.1 updates its dependency "cryptography" to includ… |
|
CRITICAL | 9.1 |