{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-31830", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-03-09T17:41:56.077Z", "datePublished": "2026-03-10T21:46:02.547Z", "dateUpdated": "2026-03-11T15:59:03.786Z"}, "containers": {"cna": {"title": "sigstore-ruby verifier returns success for DSSE bundles with mismatched in-toto subject digest", "problemTypes": [{"descriptions": [{"cweId": "CWE-252", "lang": "en", "description": "CWE-252: Unchecked Return Value", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/sigstore/sigstore-ruby/security/advisories/GHSA-mhg6-2q2v-9h2c", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/sigstore/sigstore-ruby/security/advisories/GHSA-mhg6-2q2v-9h2c"}], "affected": [{"vendor": "sigstore", "product": "sigstore-ruby", "versions": [{"version": "< 0.2.3", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-10T21:46:02.547Z"}, "descriptions": [{"lang": "en", "value": "sigstore-ruby is a pure Ruby implementation of the sigstore verify command from the sigstore/cosign project. Prior to 0.2.3, Sigstore::Verifier#verify does not propagate the VerificationFailure returned by verify_in_toto when the artifact digest does not match the digest in the in-toto attestation subject. As a result, verification of DSSE bundles containing in-toto statements returns VerificationSuccess regardless of whether the artifact matches the attested subject. This vulnerability is fixed in 0.2.3."}], "source": {"advisory": "GHSA-mhg6-2q2v-9h2c", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-11T15:53:27.894861Z", "id": "CVE-2026-31830", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-11T15:59:03.786Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-31830", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-11T15:53:27.894861Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-11T15:53:29.010Z"}}], "cna": {"title": "sigstore-ruby verifier returns success for DSSE bundles with mismatched in-toto subject digest", "source": {"advisory": "GHSA-mhg6-2q2v-9h2c", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "sigstore", "product": "sigstore-ruby", "versions": [{"status": "affected", "version": "< 0.2.3"}]}], "references": [{"url": "https://github.com/sigstore/sigstore-ruby/security/advisories/GHSA-mhg6-2q2v-9h2c", "name": "https://github.com/sigstore/sigstore-ruby/security/advisories/GHSA-mhg6-2q2v-9h2c", "tags": ["x_refsource_CONFIRM"]}], "descriptions": [{"lang": "en", "value": "sigstore-ruby is a pure Ruby implementation of the sigstore verify command from the sigstore/cosign project. Prior to 0.2.3, Sigstore::Verifier#verify does not propagate the VerificationFailure returned by verify_in_toto when the artifact digest does not match the digest in the in-toto attestation subject. As a result, verification of DSSE bundles containing in-toto statements returns VerificationSuccess regardless of whether the artifact matches the attested subject. This vulnerability is fixed in 0.2.3."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-252", "description": "CWE-252: Unchecked Return Value"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-10T21:46:02.547Z"}}}, "cveMetadata": {"cveId": "CVE-2026-31830", "state": "PUBLISHED", "dateUpdated": "2026-03-11T15:59:03.786Z", "dateReserved": "2026-03-09T17:41:56.077Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-03-10T21:46:02.547Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sigstore:sigstore:*:*:*:*:*:ruby:*:*", "matchCriteriaId": "5DE0DBB4-D942-43C5-B503-D3CBF28B98DA", "versionEndExcluding": "0.2.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "sigstore-ruby is a pure Ruby implementation of the sigstore verify command from the sigstore/cosign project. Prior to 0.2.3, Sigstore::Verifier#verify does not propagate the VerificationFailure returned by verify_in_toto when the artifact digest does not match the digest in the in-toto attestation subject. As a result, verification of DSSE bundles containing in-toto statements returns VerificationSuccess regardless of whether the artifact matches the attested subject. This vulnerability is fixed in 0.2.3."}, {"lang": "es", "value": "sigstore-ruby es una implementaci\u00f3n pura de Ruby del comando sigstore verify del proyecto sigstore/cosign. Antes de 0.2.3, Sigstore::Verifier#verify no propaga el VerificationFailure devuelto por verify_in_toto cuando el *digest* del artefacto no coincide con el *digest* en el sujeto de la atestaci\u00f3n in-toto. Como resultado, la verificaci\u00f3n de paquetes DSSE que contienen declaraciones in-toto devuelve VerificationSuccess independientemente de si el artefacto coincide con el sujeto atestiguado. Esta vulnerabilidad est\u00e1 corregida en 0.2.3."}], "id": "CVE-2026-31830", "lastModified": "2026-03-20T15:19:15.390", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-03-10T22:16:21.097", "references": [{"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/sigstore/sigstore-ruby/security/advisories/GHSA-mhg6-2q2v-9h2c"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-252"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,0.2.3)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "product": "sigstore-ruby", "vendor": "sigstore"}], "analysis": {"en": {"generated_at": "2026-04-16T03:06:14.282223+00:00", "value": {"mitigation_remediation": ["Upgrade Sigstore::Ruby to version 0.2.3 or later, which includes the fix that correctly propagates verification failures for mismatched digests", "Verify that the deployed Verifier#verify method returns a VerificationFailure when the artifact digest does not match the attestation subject, ensuring the integrity check is effective", "Audit any existing verification pipelines that use older Sigstore::Ruby releases to identify and replace any instances that may have silently accepted tampered artifacts"], "summary": {"action": "Apply patch", "impact": "Integrity compromise from verification bypass"}, "threat_synthesis": {"affected_systems": "The affected product is Sigstore::Ruby, part of the sigstore/sigstore-ruby project. Vulnerability exists in all releases prior to version 0.2.3. Users relying on older versions of the ruby library to validate DSSE bundles are susceptible.", "description_and_impact": "Sigstore-Ruby is a pure Ruby library that emulates the sigstore verify command, a tool used to attest digital signatures on software artifacts. The vulnerability stems from the Verifier#verify method, which fails to propagate a VerificationFailure returned by the underlying verify_in_toto routine when the artifact digest does not match the digest listed in the in\u2011toto attestation subject. As a result, any DSSE bundle containing an in\u2011toto statement that references a different artifact is still reported as VerificationSuccess. This failure path allows an attacker to supply a malicious artifact and have the verifier believe it is legitimate, effectively bypassing integrity checks and enabling the deployment of tampered software.", "risk_and_exploitability": "The CVSS score of 7.5 indicates a high severity, and the EPSS score of less than 1% suggests low but nonzero exploitation probability. The vulnerability is not currently listed in the CISA KEV catalog, but its impact on software supply chain integrity is significant. Attackers can exploit the flaw by crafting a DSSE bundle with a mismatched subject digest and feeding it to any service or application that relies on Sigstore::Ruby for verification. Since the flaw is purely in the verification logic, the attack requires only the ability to supply a crafted bundle, making the attack vector relatively straightforward for remote contributors or automated build systems."}}}}, "created": "2026-03-11T11:42:00.974361+00:00", "updated": "2026-04-16T03:15:22.945216+00:00", "vendors": ["sigstore", "sigstore$PRODUCT$sigstore-ruby"]}