Known Vulnerabilities for Argo-cd by Linuxfoundation
Listed below are 9 of the newest known vulnerabilities associated with "Argo-cd" by "Linuxfoundation".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-24905 | Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. A vulnerability was found in Argo CD prior to versi... | 4.3 - MEDIUM | 2022-05-20 | 2022-06-06 |
| CVE-2022-24904 | Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Argo CD starting with version 0.7.0 and prior to ve... | 4.3 - MEDIUM | 2022-05-20 | 2022-06-03 |
| CVE-2022-24768 | Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. All unpatched versions of Argo CD starting with 1.0... | 8.8 - HIGH | 2022-03-23 | 2023-06-23 |
| CVE-2022-24731 | Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Argo CD starting with version 1.5.0 but before vers... | 4.9 - MEDIUM | 2022-03-23 | 2022-04-01 |
| CVE-2022-24730 | Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Argo CD starting with version 1.3.0 but before vers... | 6.5 - MEDIUM | 2022-03-23 | 2023-06-23 |
| CVE-2022-24348 | Argo CD before 2.1.9 and 2.2.x before 2.2.4 allows directory traversal related to Helm charts because of an error in helmTemp... | 7.7 - HIGH | 2022-02-04 | 2022-02-09 |
| CVE-2021-26924 | An issue was discovered in Argo CD before 1.8.4. Browser XSS protection is not activated due to the missing XSS protection he... | 6.1 - MEDIUM | 2021-03-15 | 2021-03-18 |
| CVE-2021-26923 | An issue was discovered in Argo CD before 1.8.4. Accessing the endpoint /api/version leaks internal information for the syste... | 7.5 - HIGH | 2021-03-15 | 2022-07-12 |
| CVE-2021-3557 | A flaw was found in argocd. Any unprivileged user is able to deploy argocd in their namespace and with the created ServiceAcc... | 6.5 - MEDIUM | 2022-02-16 | 2022-03-03 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Linuxfoundation | Argo-cd | 1.8.6 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.8.5 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.8.4 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.8.3 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.8.2 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.8.1 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.8.0 | - | All | All |
| Application | Linuxfoundation | Argo-cd | 1.8.0 | rc1 | All | All |
| Application | Linuxfoundation | Argo-cd | 1.8.0 | rc2 | All | All |
| Application | Linuxfoundation | Argo-cd | 1.7.9 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.7.8 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.7.7 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.7.6 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.7.5 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.7.4 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.7.3 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.7.2 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.7.12 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.7.11 | All | All | All |
| Application | Linuxfoundation | Argo-cd | 1.7.10 | All | All | All |