github.com/kcp-dev/kcp

Go2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting github.com/kcp-dev/kcppage 1 of 1

CVE-2025-29922CRITICALCVSS 9.6EG 9.6✓ Fixed in 0.26.3
2025-03-20
kcp is a Kubernetes-like control plane for form-factors and use-cases beyond Kubernetes and container workloads. Prior to 0.26.3, the identified vulnerability allows creating or deleting an object via the APIExport VirtualWorkspace in any …
CVE-2026-39429HIGHCVSS 8.2EG 8.2✓ Fixed in 0.29.3
2026-04-08
kcp is a Kubernetes-like control plane for form-factors and use-cases beyond Kubernetes and container workloads. Prior to 0.30.3 and 0.29.3, the cache server is directly exposed by the root shard and has no authentication or authorization …

Check whether github.com/kcp-dev/kcp is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for github.com/kcp-dev/kcp CVEs against the assets you own.

Start Free Scan →