VYPR

Go modules package

github.com/argoproj/argo-cd/v2/server

pkg:golang/github.com/argoproj/argo-cd/v2/server

Vulnerabilities (1)

  • CVE-2024-37152Jun 6, 2024
    affected >= 2.9.3, < 2.9.17fixed 2.9.17

    Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. The vulnerability allows unauthorized access to the sensitive settings exposed by /api/v1/settings endpoint without authentication. All sensitive settings are hidden except passwordPattern. This vulnerabil