๐Ÿ” CVE Alert

CVE-2025-70887

HIGH 8.8
CVSS Score
8.8
EPSS Score
0.1%
EPSS Percentile
16th

An issue in ralphje Signify before v.0.9.2 allows a remote attacker to escalate privileges via the signed_data.py and the context.py components

Vendor n/a
Product n/a
Published Mar 25, 2026
Last Updated Mar 27, 2026
Stay Ahead of the Next One

Get instant alerts for n/a n/a

Be the first to know when new high vulnerabilities affecting n/a n/a are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

n/a / n/a
n/a

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/ralphje/signify/issues/60 github.com: https://github.com/ralphje/signify/commit/64f21c0cc06cea0536370686ca3ba7a01e4adaa8 github.com: https://github.com/mtrojnar/osslsigncode/issues/475 github.com: https://github.com/mtrojnar/osslsigncode/pull/477 github.com: https://github.com/mtrojnar/osslsigncode/releases/tag/2.11