Argo Continuous Delivery

DATE	CVE	VULNERABILITY TITLE	RISK
2020-04-08	CVE-2020-11576	Information Exposure Through Discrepancy vulnerability in Linuxfoundation Argo Continuous Delivery 1.5.0 Fixed in v1.5.1, Argo version v1.5.0 was vulnerable to a user-enumeration vulnerability which allowed attackers to determine the usernames of valid (non-SSO) accounts because /api/v1/session returned 401 for an existing username and 404 otherwise. network low complexity linuxfoundation CWE-203	5.0