369 matches found
Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.13.2 security update
An update is now available for Red Hat OpenShift GitOps v1.13.2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
RHSA-2023:7344 Red Hat Security Advisory: openshift-gitops-kam security update
Bulletin has no description...
RHSA-2023:6243 Red Hat Security Advisory: openshift-gitops-kam security update
Bulletin has no description...
RHSA-2023:6782 Red Hat Security Advisory: openshift-gitops-kam security update
Bulletin has no description...
RHSA-2023:5407 Red Hat Security Advisory: openshift-gitops-kam security update
Bulletin has no description...
RHSA-2024:1752 Red Hat Security Advisory: GitOps 1.12.1- Argo CD CLI and MicroShift GitOps security update
Bulletin has no description...
Important: Red Hat Enhancement Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.0
Errata Advisory for Red Hat OpenShift GitOps v1.14.0. Errata Advisory for Red Hat OpenShift GitOps v1.14.0...
RHSA-2023:3557 Red Hat Security Advisory: openshift-gitops-kam security update
Bulletin has no description...
RHSA-2023:3229 Red Hat Security Advisory: openshift-gitops-kam security update
Bulletin has no description...
GO-2022-0502 Weave GitOps leaked cluster credentials into logs on connection errors in github.com/weaveworks/weave-gitops
Weave GitOps leaked cluster credentials into logs on connection errors in github.com/weaveworks/weave-gitops...
GO-2023-1925 Weave GitOps Terraform Controller Information Disclosure Vulnerability in github.com/weaveworks/tf-controller
Weave GitOps Terraform Controller Information Disclosure Vulnerability in github.com/weaveworks/tf-controller...
GO-2023-1388 Gitops Run insecure communication in github.com/weaveworks/weave-gitops
Gitops Run insecure communication in github.com/weaveworks/weave-gitops...
GO-2023-1377 GitOps Run allows for Kubernetes workload injection in github.com/weaveworks/weave-gitops
GitOps Run allows for Kubernetes workload injection in github.com/weaveworks/weave-gitops...
The vulnerability of the declarative delivery tool for GitOps on Kubernetes Argo CD, related to deficiencies in the error reporting mechanism, allows a perpetrator to gain unauthorized access to protected information.
The vulnerability of GitOps’ continuous delivery tool for Kubernetes Argo CD is related to shortcomings in the error reporting mechanism. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the declarative delivery tool for GitOps on Kubernetes Argo CD, related to deficiencies in authentication procedures, allows attackers to gain unauthorized access to protected information.
The vulnerability of GitOps’ continuous delivery tool for Kubernetes Argo CD is related to deficiencies in the authentication process when handling the final endpoint /api/v1/settings. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...
The vulnerability of the ignoreDifferences configuration in the declarative delivery tool for GitOps for Kubernetes Argo CD allows a attacker to trigger a service failure.
The vulnerability of the ignoreDifferences configuration option in GitOps’ continuous delivery tool for Kubernetes Argo CD is related to an uncontrolled resource consumption when processing the jqPathExpressions parameter. Exploiting this vulnerability could allow a malicious actor to cause servi...
Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.12.5 security update
An update is now available for Red Hat OpenShift GitOps v1.12.5. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.11.7 security update
An update is now available for Red Hat OpenShift GitOps v1.11.7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.13.1 security update
An update is now available for Red Hat OpenShift GitOps v1.13.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
BIT-ARGO-CD-2024-41666 The Argo CD web terminal session does not handle the revocation of user permissions properly.
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Argo CD has a Web-based terminal that allows users to get a shell inside a running pod, just as they would with kubectl exec. Starting in version 2.6.0, when the administrator enables this function and grants permission to...