argoproj Summary
Latest vulnerabilities published by argoproj
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Privilege Escalation Vulnerability in Argo Events for Kubernetes
CVE-2025-32445ArgoprojArgo-events10CRITICALExposed Secrets in Argo CD Error Messages and Diff View
CVE-2025-23216ArgoprojArgo-cd6.8MEDIUMSecurity Vulnerability in Argo Workflows allowing Fake Tokens
CVE-2024-53862ArgoprojArgo-workflowsRace Condition in Argo Workflows Controller Affects Kubernetes Orchestration
CVE-2024-47827ArgoprojArgo-workflows5.7MEDIUMArgo CD vulnerability could lead to sensitive information leakage
CVE-2024-41666ArgoprojArgo-cd6.5MEDIUMSecurity Vulnerability in Argo CD Could Lead to Deployment Disruption
CVE-2024-40634ArgoprojArgo-cd7.5HIGHUnauthorized Access to Sensitive Settings in Argo CD
CVE-2024-37152ArgoprojArgo-cdEPSS 24%7.5HIGHVulnerability in Argo CD Allows for Cluster Enumeration
CVE-2024-36106ArgoprojArgo-cd4.3MEDIUMUnprivileged Pods Can Connect to Redis Server on Port 6379, Raising Security Concerns
CVE-2024-31989ArgoprojArgo-cdπΎπ‘9CRITICALDenial of Service Vulnerability in Argo CD for Kubernetes
CVE-2024-32476ArgoprojArgo Cd6.5MEDIUMArgo CD API Server Vulnerability
CVE-2024-31990ArgoprojArgo-cd6.3MEDIUMArgoCD Vulnerable to Denial-of-Service Attack via Malicious Helm Registry
CVE-2024-29893ArgoprojArgo-cd6.5MEDIUMBrute Force Vulnerability in Argo CD Could Allow Attackers to Bypass Rate Limits and Target Default Admin Account
CVE-2024-21662ArgoprojArgo-cd9.1CRITICALArgo CD vulnerable to Denial of Service (DoS) attack due to unsafe array manipulation in multi-threaded environment
CVE-2024-21661ArgoprojArgo-cd7.5HIGHBrute Force Login Bypass in Argo CD by Vendor Argo Project
CVE-2024-21652ArgoprojArgo-cd9.8CRITICALImproper Validation Bug in Argo CD Allows Bypass of Branch Protection
CVE-2023-50726ArgoprojArgo-cd6.4MEDIUMCross-site Scripting (XSS) Vulnerability in Argo CD Allows Attacker to Execute JavaScript with Elevated Permissions
CVE-2024-28175ArgoprojArgo-cd5.4MEDIUMCross-Site Request Forgery (CSRF) in github.com/argoproj/argo-cd
CVE-2024-22424argoprojargo-cd8.3HIGHPath traversal allows leaking out-of-bound Helm charts from Argo CD repo-server
CVE-2023-40026ArgoprojArgo-cd5MEDIUMCluster secret might leak in cluster details page in Argo CD
CVE-2023-40029ArgoprojArgo-cd9.9CRITICALDenial of Service to Argo CD repo-server
CVE-2023-40584ArgoprojArgo-cd6.5MEDIUMArgo CD web terminal session doesn't expire
CVE-2023-40025ArgoprojArgo-cd4.7MEDIUMArgo CD users with any cluster secret update access may update out-of-bounds cluster secrets
CVE-2023-23947ArgoprojArgo-cd9.1CRITICALArgo CD leaks repository credentials in user-facing error messages and in logs
CVE-2023-25163ArgoprojArgo-cd6.3MEDIUMJWT audience claim is not verified
CVE-2023-22482ArgoprojArgo-cd9.1CRITICAL