CVE-2026-22703

Name of the Vulnerable Software and Affected Versions Cosign versions prior to 2.6.2 and 3.0.4

Description Cosign is a tool providing code signing and transparency for containers and binaries. Prior to versions 2.6.2 and 3.0.4, a crafted Cosign bundle could successfully verify an artifact even if the embedded Rekor entry did not reference the artifact’s digest, signature, or public key. During Rekor entry verification, Cosign normally verifies the Rekor entry signature and compares the artifact's digest, the user's public key (from a Fulcio certificate or user-provided key), and the artifact signature to the Rekor entry contents. Without these comparisons, Cosign would accept any response from Rekor as valid. A malicious actor compromising a user’s identity or signing key could construct a valid Cosign bundle with an arbitrary Rekor entry, preventing the user from auditing the signing event.

Recommendations Update to Cosign version 2.6.2 or 3.0.4.