argoproj Argo Cd Vulnerabilities
Argoproj Argo Cd vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Exposed Secrets in Argo CD Error Messages and Diff View
CVE-2025-23216ArgoprojArgo-cd6.8MEDIUMArgo CD vulnerability could lead to sensitive information leakage
CVE-2024-41666ArgoprojArgo-cd6.5MEDIUMSecurity Vulnerability in Argo CD Could Lead to Deployment Disruption
CVE-2024-40634ArgoprojArgo-cd7.5HIGHUnauthorized Access to Sensitive Settings in Argo CD
CVE-2024-37152ArgoprojArgo-cdEPSS 24%7.5HIGHVulnerability in Argo CD Allows for Cluster Enumeration
CVE-2024-36106ArgoprojArgo-cd4.3MEDIUMUnprivileged Pods Can Connect to Redis Server on Port 6379, Raising Security Concerns
CVE-2024-31989ArgoprojArgo-cdπΎπ‘9CRITICALDenial of Service Vulnerability in Argo CD for Kubernetes
CVE-2024-32476ArgoprojArgo Cd6.5MEDIUMArgo CD API Server Vulnerability
CVE-2024-31990ArgoprojArgo-cd6.3MEDIUMArgoCD Vulnerable to Denial-of-Service Attack via Malicious Helm Registry
CVE-2024-29893ArgoprojArgo-cd6.5MEDIUMBrute Force Vulnerability in Argo CD Could Allow Attackers to Bypass Rate Limits and Target Default Admin Account
CVE-2024-21662ArgoprojArgo-cd9.1CRITICALArgo CD vulnerable to Denial of Service (DoS) attack due to unsafe array manipulation in multi-threaded environment
CVE-2024-21661ArgoprojArgo-cd7.5HIGHBrute Force Login Bypass in Argo CD by Vendor Argo Project
CVE-2024-21652ArgoprojArgo-cd9.8CRITICALImproper Validation Bug in Argo CD Allows Bypass of Branch Protection
CVE-2023-50726ArgoprojArgo-cd6.4MEDIUMCross-site Scripting (XSS) Vulnerability in Argo CD Allows Attacker to Execute JavaScript with Elevated Permissions
CVE-2024-28175ArgoprojArgo-cd5.4MEDIUMCross-Site Request Forgery (CSRF) in github.com/argoproj/argo-cd
CVE-2024-22424argoprojargo-cd8.3HIGHPath traversal allows leaking out-of-bound Helm charts from Argo CD repo-server
CVE-2023-40026ArgoprojArgo-cd5MEDIUMCluster secret might leak in cluster details page in Argo CD
CVE-2023-40029ArgoprojArgo-cd9.9CRITICALDenial of Service to Argo CD repo-server
CVE-2023-40584ArgoprojArgo-cd6.5MEDIUMArgo CD web terminal session doesn't expire
CVE-2023-40025ArgoprojArgo-cd4.7MEDIUMArgo CD users with any cluster secret update access may update out-of-bounds cluster secrets
CVE-2023-23947ArgoprojArgo-cd9.1CRITICALArgo CD leaks repository credentials in user-facing error messages and in logs
CVE-2023-25163ArgoprojArgo-cd6.3MEDIUMJWT audience claim is not verified
CVE-2023-22482ArgoprojArgo-cd9.1CRITICALargo-cd Controller reconciles apps outside configured namespaces when sharding is enabled
CVE-2023-22736ArgoprojArgo-cd8.6HIGHCross-site Scripting for Argo CD single sign on users
CVE-2022-31102ArgoprojArgo-cd2.6LOWArgo CD's certificate verification is skipped for connections to OIDC providers
CVE-2022-31105ArgoprojArgo-cd8.3HIGH