CVE-2026-39429
8.2
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Summary
kcp is a Kubernetes-like control plane for form-factors and use-cases beyond Kubernetes and container workloads. Prior to 0.30.3 and 0.29.3, the cache server is directly exposed by the root shard and has no authentication or authorization in place. This allows anyone who can access the root shard to read and write to the cache server. This vulnerability is fixed in 0.30.3 and 0.29.3.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| kcp-dev | kcp | >= 0.30.0, < 0.30.3 | affected |
| kcp-dev | kcp | < 0.29.3 | affected |
Weaknesses
- CWE-862: CWE-862: Missing Authorization
- CWE-302: CWE-302: Authentication Bypass by Assumed-Immutable Data
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://github.com/kcp-dev/kcp/security/advisories/GHSA-3j3q-wp9x-585p
- https://github.com/kcp-dev/kcp/releases/tag/v0.29.3
- https://github.com/kcp-dev/kcp/releases/tag/v0.30.3
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.