Filters

Versions

1.8.0
4
2.2.0
4
2.3.0
4
2.4.0
4
0.7.0
2
1.5.0
2
0.6.1
1
1.3.0
1
1.4.2
1
1.7.0
1
2.10.0
1
2.11.0
1
2.2.9
1
2.3.0-rc1
1
2.3.0-rc2
1
2.3.0-rc4
1
2.3.0-rc5
1
2.3.4
1
2.6.0
1
2.6.0-rc1
1
2.6.0-rc2
1
2.6.0-rc3
1
2.6.0-rc4
1
2.6.0-rc5
1
2.6.0-rc6
1
2.6.0-rc7
1
2.7.0
1
2.8.0
1

go/github.com/argoproj/argo-cdArgo CD allows authenticated users to enumerate clusters by name

medium
4.3
First published (updated )
CVE-2024-36106

Linuxfoundation Argo-cdPath traversal allows leaking out-of-bound Helm charts from Argo CD repo-server

medium
5
First published (updated )
CVE-2023-40026

Linuxfoundation Argo Continuous DeliveryDenial of Service to Argo CD repo-server

medium
6.5
First published (updated )
CVE-2023-40584

Linuxfoundation Argo Continuous DeliveryArgo CD leaks repository credentials in user-facing error messages and in logs

medium
6.5
First published (updated )
CVE-2023-25163

Linuxfoundation Argo-cdCross-site Scripting for Argo CD single sign on users

medium
6.1
First published (updated )
CVE-2022-31102

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Linuxfoundation Argo-cdSymlink following allows leaking out-of-bounds YAML files from Argo CD repo-server

medium
4.3
First published (updated )
CVE-2022-31036

go/github.com/argoproj/argo-cd/v2Argo CD vulnerable to Uncontrolled Memory Consumption

medium
6.5
First published (updated )
CVE-2022-31016

Linuxfoundation Argo-cdArgo CD login screen allows message spoofing if SSO is enabled

medium
4.3
First published (updated )
CVE-2022-24905

Linuxfoundation Argo-cdSymlink following allows leaking out-of-bound manifests and JSON files from Argo CD repo-server

medium
4.3
First published (updated )
CVE-2022-24904

Linuxfoundation Argo-cdPath traversal allows leaking out-of-bound files from Argo CD repo-server

medium
6.8
First published (updated )
CVE-2022-24731

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Linuxfoundation Argo-cdAny unprivileged user is able to deploy argocd in his namespace and with the created ServiceAccount …

medium
6.5
First published (updated )
CVE-2021-3557

Linuxfoundation Argo Continuous DeliveryArgo CD leaked secret data into error messages and logs on invalid edits via UI

medium
5.9
First published (updated )
CVE-2021-23135

Linuxfoundation Argo-cdXSS

medium
6.1
First published (updated )
CVE-2021-26924

Linuxfoundation Argo Continuous DeliveryCross-site Scripting (XSS)

medium
4.8
First published (updated )
CVE-2021-23347

Linuxfoundation Argo Continuous DeliveryIn util/session/sessionmanager.go in Argo CD before 1.8.4, tokens continue to work even when the use…

medium
6.5
First published (updated )
CVE-2021-26921

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

go/github.com/argoproj/argo-cdInfoleak

medium
6.5
First published (updated )
CVE-2018-21034

go/github.com/argoproj/argo-cdFixed in v1.5.1, Argo version v1.5.0 was vulnerable to a user-enumeration vulnerability which allowe…

medium
5.3
First published (updated )
CVE-2020-11576

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203