GO-2026-4515 — Vulnetix

GO-2026-4515 PUBLISHED

Kargo has Missing Authorization Vulnerabilities in Approval & Promotion REST API Endpoints in github.com/akuity/kargo

Affected Products

Vendor	Product	Versions
github.com	akuity/kargo	1.9.0, 1.9.0

Timeline

Feb 23, 2026 CVE Published
Feb 23, 2026 CVE Updated

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›