Every CVE whose affected-product data names Docker Notary, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2015-9259 — CVSS 9.8 (critical): In Docker Notary before 0.1, the checkRoot function in gotuf/client/client.go does not check expiry of root.json files, despite a comment…
CVE-2015-9258 — CVSS 7.5 (high): In Docker Notary before 0.1, gotuf/signed/verify.go has a Signature Algorithm Not Matched to Key vulnerability. Because an attacker…