Vulnerabilities > Argoproj

DATE CVE VULNERABILITY TITLE RISK
2023-01-26 CVE-2023-22736 Missing Authorization vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
high complexity
argoproj CWE-862
8.5
2022-07-12 CVE-2022-31102 Cross-site Scripting vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
low complexity
argoproj CWE-79
6.1
2022-07-12 CVE-2022-31105 Improper Certificate Validation vulnerability in multiple products
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
low complexity
linuxfoundation argoproj CWE-295
critical
9.6
2022-07-12 CVE-2022-1025 Unspecified vulnerability in Argoproj Argo CD
All unpatched versions of Argo CD starting with v1.0.0 are vulnerable to an improper access control bug, allowing a malicious user to potentially escalate their privileges to admin-level.
network
low complexity
argoproj
8.8
2022-06-27 CVE-2022-31036 Link Following vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
low complexity
argoproj CWE-59
4.3
2022-06-27 CVE-2022-31034 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
high complexity
argoproj CWE-335
8.1
2022-06-27 CVE-2022-31035 Cross-site Scripting vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
low complexity
argoproj CWE-79
5.4
2022-06-25 CVE-2022-31016 Allocation of Resources Without Limits or Throttling vulnerability in Argoproj Argo CD
Argo CD is a declarative continuous deployment for Kubernetes.
network
low complexity
argoproj CWE-770
6.5
2022-05-20 CVE-2022-29165 Authentication Bypass by Spoofing vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
low complexity
argoproj CWE-290
critical
10.0
2022-05-20 CVE-2022-24904 Link Following vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
low complexity
argoproj CWE-59
4.3