Unrestricted Network Access in Argo CD Helm Chart by Argo Project
CVE-2026-62185

8.6HIGH

Key Information:

Vendor

Argoproj

Status
Vendor
CVE Published:
13 July 2026

What is CVE-2026-62185?

The Argo CD Helm Chart prior to version 10.0.0 lacks the enforcement of default network policies, exposing critical components like the repo-server and additional Argo APIs to unrestricted access. This vulnerability enables attackers to leverage this unrestricted network access, potentially leading to cluster compromise and remote code execution through coordinated attacks.

Affected Version(s)

argo-helm 0 < 10.0.0

argo-helm 10.0.0

References

CVSS V4

Score:
8.6
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
Low
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

hugo-syn
paulb-syn
.