Filter
-Infinity
0
Trending
Versions
2.10.0
12
2.4.0
11
2.2.0
10
2.3.0
9
2.9.0
9
1.8.0
5
2.11.0
5
2.6.0
4
2.8.0
4
1.0.0
3
1.5.0
3
2.2.9
3
2.3.4
3
2.5.0
3
2.6.0-rc1
3
2.6.0-rc2
3
2.6.0-rc3
3
2.6.0-rc4
3
0.5.0
2
0.7.0
2
1.3.0
2
2.3.0-rc1
2
2.3.0-rc2
2
2.3.0-rc4
2
2.3.0-rc5
2
2.7.0
2
0.11.0
1
0.6.1
1
1.4.0
1
1.4.2
1
1.7.0
1
1.8.2
1
2.1.0
1
2.1.12
1
2.10.0-rc1
1
2.2.7
1
2.3.1
1
2.6.0-rc5
1
2.6.0-rc6
1
2.6.0-rc7
1
2.6.13
1
2.7.11
1
2.9.3
1
go/github.com/argoproj/argo-cd/v2The Argo CD web terminal session does not handle the revocation of user permissions properly.
6.5
First published (updated )
go/github.com/argoproj/argo-cd/v2Argo CD Unauthenticated Denial of Service (DoS) Vulnerability via /api/webhook Endpoint
7.5
First published (updated )
go/github.com/argoproj/argo-cd/v2/serverUnauthenticated Access to sensitive settings in Argo CD
7.5
First published (updated )
go/github.com/argoproj/argo-cdArgo CD allows authenticated users to enumerate clusters by name
4.3
First published (updated )
go/github.com/argoproj/argo-cd/v2ArgoCD Vulnerable to Use of Risky or Missing Cryptographic Algorithms in Redis Cache
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
go/github.com/argoproj/argo-cd/v2Denial of Service via malicious jqPathExpressions in ignoreDifferences
6.5
EPSS
0.04%
First published (updated )
go/github.com/argoproj/argo-cd/v2Argo CD' API server does not enforce project sourceNamespaces
6.3
EPSS
0.04%
First published (updated )
go/github.com/argoproj/argo-cd/v2Uncontrolled Resource Consumption vulnerability in ArgoCD's repo server
6.5
EPSS
0.04%
First published (updated )
go/github.com/argoproj/argo-cd/v2Argo CD vulnerable to Bypassing of Rate Limit and Brute Force Protection Using Cache Overflow
9.1
First published (updated )
go/github.com/argoproj/argo-cd/v2Argo CD Denial of Service (DoS) Vulnerability Due to Unsafe Array Modification in Multi-threaded Environment
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/argo-cdArgo CD vulnerable to Bypassing of Brute Force Protection via Application Crash and In-Memory Data Loss
9.8
First published (updated )
go/github.com/argoproj/argo-cd/v2Cross-site scripting on application summary component in argo-cd
9.1
EPSS
0.04%
First published (updated )
go/github.com/argoproj/argo-cd/v2Cross-Site Request Forgery (CSRF) in github.com/argoproj/argo-cd
8.4
EPSS
0.05%
First published (updated )
go/github.com/argoproj/argo-cd/v2Path traversal allows leaking out-of-bound Helm charts from Argo CD repo-server
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
go/github.com/argoproj/argo-cdArgo CD web terminal session doesn't expire
7.1
First published (updated )
Argo CDCluster secret might leak in cluster details page in Argo CD
9.9
First published (updated )
Argo CDArgo CD leaks repository credentials in user-facing error messages and in logs
6.5
First published (updated )
Argo CDAll Argo CD versions starting with v2.3.0-rc1 are vulnerable to an improper authorization bug which …
7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Argo CDArgo CD users with any cluster secret update access may update out-of-bounds cluster secrets
9.1
First published (updated )
Argo CDargo-cd Controller reconciles apps outside configured namespaces when sharding is enabled
8.6
First published (updated )
Argo CDCross-site Scripting for Argo CD single sign on users
6.1
First published (updated )
Linux Foundation Argo CDArgo CD's certificate verification is skipped for connections to OIDC providers
9.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Argo CDAll unpatched versions of Argo CD starting with v1.0.0 are vulnerable to an improper access control …
First published (updated )
Argo CDSymlink following allows leaking out-of-bounds YAML files from Argo CD repo-server
4.3
First published (updated )
go/github.com/argoproj/argo-cd/v2Argo CD vulnerable to Uncontrolled Memory Consumption
6.5
First published (updated )
go/github.com/argoproj/argo-cd/v2External URLs for Deployments can include javascript in argo-cd
First published (updated )
go/github.com/argoproj/argo-cd/v2Insecure entropy in argo-cd
8.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.