In-toto Project In-toto — known CVE vulnerabilities
Every CVE whose affected-product data names In-toto Project In-toto, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2023-32076 — CVSS 5.5 (medium): in-toto is a framework to protect supply chain integrity. The in-toto configuration is read from various directories and allows users to…