CVE-2026-42575 | chainguard-dev apko up to 1.2.6 on APKINDEX ChecksumString data authenticity (GHSA-hcwr-pq9g-rq3m)

A vulnerability was found in chainguard-dev apko up to 1.2.6 on APKINDEX. It has been declared as problematic. Impacted is the function ChecksumString. The manipulation results in insufficient verification of data authenticity.

This vulnerability is identified as CVE-2026-42575. The attack can be executed remotely. There is not any exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More