Vulnerabilities > Linuxfoundation > Argo CD > 0.5.3

DATE CVE VULNERABILITY TITLE RISK
2024-01-19 CVE-2024-22424 Cross-Site Request Forgery (CSRF) vulnerability in Linuxfoundation Argo-Cd
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
high complexity
linuxfoundation CWE-352
8.3
2023-09-27 CVE-2023-40026 Path Traversal vulnerability in Linuxfoundation Argo-Cd
Argo CD is a declarative continuous deployment framework for Kubernetes.
network
low complexity
linuxfoundation CWE-22
4.3
2022-07-12 CVE-2022-31105 Improper Certificate Validation vulnerability in Linuxfoundation Argo-Cd
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
high complexity
linuxfoundation CWE-295
5.1
2022-07-12 CVE-2022-1025 Unspecified vulnerability in Linuxfoundation Argo-Cd
All unpatched versions of Argo CD starting with v1.0.0 are vulnerable to an improper access control bug, allowing a malicious user to potentially escalate their privileges to admin-level.
network
low complexity
linuxfoundation
8.8
2022-03-23 CVE-2022-24768 Missing Authorization vulnerability in Linuxfoundation Argo-Cd
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
low complexity
linuxfoundation CWE-862
8.8
2022-02-16 CVE-2021-3557 Incorrect Permission Assignment for Critical Resource vulnerability in multiple products
A flaw was found in argocd.
network
low complexity
linuxfoundation redhat CWE-732
4.0
2022-02-04 CVE-2022-24348 Path Traversal vulnerability in Linuxfoundation Argo-Cd
Argo CD before 2.1.9 and 2.2.x before 2.2.4 allows directory traversal related to Helm charts because of an error in helmTemplate in repository.go.
network
low complexity
linuxfoundation CWE-22
4.0
2021-03-15 CVE-2021-26924 Cross-site Scripting vulnerability in Linuxfoundation Argo-Cd
An issue was discovered in Argo CD before 1.8.4.
4.3
2021-03-15 CVE-2021-26923 Information Exposure vulnerability in Linuxfoundation Argo-Cd
An issue was discovered in Argo CD before 1.8.4.
network
low complexity
linuxfoundation CWE-200
5.0