VDB
GO-2025-3538
GO-2025-3538
PUBLISHED
kcp allows unauthorized creation and deletion of objects in arbitrary workspaces through APIExport Virtual Workspace in github.com/kcp-dev/kcp
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| github.com | kcp-dev/kcp | 0, 0 |
Timeline
- Mar 25, 2025 CVE Published
- Mar 3, 2026 CVE Updated
- May 1, 2026 Security Advisory