Lucene search
China National Vulnerability DatabaseCNVD-2022-11490HistoryFeb 10, 2022 - 12:00 a.m.
Argo CD path traversal vulnerability
2022-02-1000:00:00
China National Vulnerability Database
www.cnvd.org.cn
19
0.001 Low
EPSS
Percentile
33.2%
Argo is an open source container native workflow engine. argo CD is vulnerable to a path traversal vulnerability that originates from an error in helmTemplate in repository.go, which can be exploited by an attacker to discover credentials stored in YAML files.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Argo Argo CD | lt | 2.1.9 | |
| Argo Argo CD 2.2.*๏ผ | lt | 2.2.4 |
Related
osv
osv
Path traversal and dereference of symlinks in Argo CD
2022-02-07 19:06:18
CVE-2022-24348
2022-02-04 21:15:08
thn
thn
New Argo CD Bug Could Let Hackers Steal Secret Info from Kubernetes Apps
2022-02-06 05:48:00
prion
prion
Directory traversal
2022-02-04 21:15:00
cve
cve
CVE-2022-24348
2022-02-04 21:15:08
redhatcve
redhatcve
CVE-2022-24348
2022-02-08 14:18:04
cvelist
cvelist
CVE-2022-24348
2022-02-04 20:26:21
github
github
Path traversal and dereference of symlinks in Argo CD
2022-02-07 19:06:18
gitlab
gitlab
nvd
nvd
CVE-2022-24348
2022-02-04 21:15:08
veracode
veracode
Directory Traversal
2022-02-07 14:23:13
redhat
redhat
(RHSA-2022:0682) Important: Red Hat OpenShift GitOps security update
2022-02-25 19:44:30
(RHSA-2022:0477) Important: Red Hat OpenShift GitOps security update
2022-02-08 22:07:57
(RHSA-2022:0476) Important: Red Hat OpenShift GitOps security update
2022-02-08 22:00:22
threatpost
threatpost
Argo CD Security Bug Opens Kubernetes Cloud Apps to Attackers
2022-02-04 18:26:07
Supply Chain Security Is Not a ProblemโฆItโs a Predicament
2022-02-02 19:23:41
KP Snacks Left with Crumbs After Ransomware Attack
2022-02-02 22:25:35