VYPR
High severity8.2GHSA Advisory· Published Jan 28, 2025· Updated Apr 15, 2026

CVE-2024-13484

CVE-2024-13484

Description

A flaw was found in openshift-gitops-operator-container. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This issue can have adverse effects on the platform monitoring stack, as the rule is rolled out cluster-wide when the label is applied.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/redhat-developer/gitops-operatorGo
< 1.16.21.16.2

Affected products

5

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.