Vulnerabilities > Argoproj > High

DATE CVE VULNERABILITY TITLE RISK
2024-06-06 CVE-2024-37152 Missing Authentication for Critical Function vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
low complexity
argoproj CWE-306
7.5
7.5
2024-01-19 CVE-2024-22424 Cross-Site Request Forgery (CSRF) vulnerability in multiple products
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
high complexity
linuxfoundation argoproj CWE-352
8.3
8.3
2023-08-23 CVE-2023-40025 Insufficient Session Expiration vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
low complexity
argoproj CWE-613
7.1
7.1
2023-02-16 CVE-2023-23947 Incorrect Authorization vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
high complexity
argoproj CWE-863
8.5
8.5
2023-01-26 CVE-2023-22482 Incorrect Authorization vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
low complexity
argoproj CWE-863
8.8
8.8
2023-01-26 CVE-2023-22736 Missing Authorization vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
high complexity
argoproj CWE-862
8.5
8.5
2022-07-12 CVE-2022-1025 Unspecified vulnerability in Argoproj Argo CD
All unpatched versions of Argo CD starting with v1.0.0 are vulnerable to an improper access control bug, allowing a malicious user to potentially escalate their privileges to admin-level.
network
low complexity
argoproj
8.8
8.8
2022-06-27 CVE-2022-31034 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
high complexity
argoproj CWE-335
8.1
8.1
2022-03-23 CVE-2022-24768 Missing Authorization vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
low complexity
argoproj CWE-862
8.8
8.8
2022-02-04 CVE-2022-24348 Path Traversal vulnerability in Argoproj Argo CD
Argo CD before 2.1.9 and 2.2.x before 2.2.4 allows directory traversal related to Helm charts because of an error in helmTemplate in repository.go.
network
low complexity
argoproj CWE-22
7.7
7.7