Argo is an open source container native workflow engine. argo CD is vulnerable to a path traversal vulnerability that originates from an error in helmTemplate in repository.go, which can be exploited by an attacker to discover credentials stored in YAML files.
CPE | Name | Operator | Version |
---|---|---|---|
Argo Argo CD | lt | 2.1.9 | |
Argo Argo CD 2.2.*๏ผ | lt | 2.2.4 |