Red Hat Trusted Application Pipeline
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Red Hat Trusted Application Pipeline.
By the Year
In 2026 there have been 1 vulnerability in Red Hat Trusted Application Pipeline with an average score of 5.3 out of ten. Last year, in 2025 Trusted Application Pipeline had 1 security vulnerability published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Trusted Application Pipeline in 2026 could surpass last years number. However, the average CVE base score of the vulnerabilities in 2026 is greater by 1.60.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 1 | 5.30 |
| 2025 | 1 | 3.70 |
It may take a day or so for new Trusted Application Pipeline vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Red Hat Trusted Application Pipeline Security Vulnerabilities
Information Disclosure in Go Viper Mapstructure WeakDecode via Error Messages
CVE-2025-11065
5.3 - Medium
- January 26, 2026
A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in security-critical contexts.
Generation of Error Message Containing Sensitive Information
CIRCL FourQ RCE via Low-Order Point Injection in Diffie-Hellman
CVE-2025-8556
3.7 - Low
- August 06, 2025
A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange.
Improper Validation of Specified Type of Input
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Red Hat Trusted Application Pipeline or by Red Hat? Click the Watch button to subscribe.
