Vulnerabilidades en theupdateframework
7 resultadosCVE-2021-41131HIGHClient metadata path-traversal in python-tufEPSS 1.4%CVE-2020-15163HIGHInvalid root may become trusted root in The Update Framework (TUF)EPSS 0.6%CVE-2026-23991MEDIUMgo-tuf affected by client DoS via malformed server responseEPSS 0.5%CVE-2022-29173HIGHNo protection against rollback attacks in go-tufEPSS 0.5%CVE-2024-47534HIGHIncorrect delegation lookups can make go-tuf download the wrong artifactEPSS 0.5%CVE-2026-24686MEDIUMgo-tuf Path Traversal in TAP 4 Multirepo Client Allows Arbitrary File Write via Malicious Repository NamesEPSS 0.2%CVE-2026-23992MEDIUMgo-tuf improperly validates the configured threshold for delegationsEPSS 0.2%