169 matches found
GHSA-2HJ5-G64G-FP6P vulnerabilities
Vulnerabilities for packages: argocd-image-updater-fips, argo-cd, argocd-image-updater...
argocd-cli-2.14.10-1.1 on GA media (moderate)
argocd-cli-2.14.10-1.1 on GA media Announcement ID: openSUSE-SU-2025:15006-1 Rating: moderate Cross-References: CVE-2025-29786 CVSS scores: CVE-2025-29786 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2025-29786 SUSE : 8.2...
OPENSUSE-SU-2025:15006-1 argocd-cli-2.14.10-1.1 on GA media
These are all security issues fixed in the argocd-cli-2.14.10-1.1 package on the GA media of openSUSE Tumbleweed...
argocd-cli-2.14.8-1.1 on GA media (moderate)
argocd-cli-2.14.8-1.1 on GA media Announcement ID: openSUSE-SU-2025:14921-1 Rating: moderate Cross-References: CVE-2025-26791 CVSS scores: CVE-2025-26791 SUSE : 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N CVE-2025-26791 SUSE : 2.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA...
OPENSUSE-SU-2025:14921-1 argocd-cli-2.14.8-1.1 on GA media
These are all security issues fixed in the argocd-cli-2.14.8-1.1 package on the GA media of openSUSE Tumbleweed...
CVE-2025-30204 vulnerabilities
Vulnerabilities for packages: grafana-alloy, amazon-cloudwatch-agent, flux-notification-controller, flux-image-reflector-controller, chartmuseum, argocd-image-updater, terraform, terraform-provider-azurerm, opencost, crossplane-provider-azure-storage, scorecard, rancher, octo-sts, op-geth,...
GHSA-MH63-6H87-95CP vulnerabilities
Vulnerabilities for packages: promxy, sqlexporter, kaniko, step-fips, harbor-fips, chartmuseum, harbor-registry-fips, kaniko-fips, agentbeat-fips, eksctl, grafana-alloy-fips, kubernetes-dashboard-auth-fips, nemo, octo-sts, opentelemetry-operator, zot, actions-runner-controller-fips,...
SUSE CVE-2024-13484
A flaw was found in openshift-gitops-operator-container. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This issue can have adverse effects on the platform monitoring stack, as the...
Unauthorized Rule Injection
ArgoCD is vulnerable to unauthorized rule injection. The vulnerability is due to improper namespace isolation, as the openshift.io/cluster-monitoring label is automatically applied to all namespaces deploying an ArgoCD CR instance, allowing them to create unauthorized PrometheusRule objects...
CVE-2025-23216 vulnerabilities
Vulnerabilities for packages: argocd-image-updater-fips, argocd-image-updater...
GO-2025-3427 Malicious PrometheusRule creation to all namespaces that deploy a ArgoCD CR instance in github.com/redhat-developer/gitops-operator
Malicious PrometheusRule creation to all namespaces that deploy a ArgoCD CR instance in github.com/redhat-developer/gitops-operator...
OpenShift GitOps Operator Namespace Isolation Break
A flaw was found in openshift-gitops-operator-container. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This issue can have adverse effects on the platform monitoring stack, as the...
GHSA-58FX-7V9Q-3G56 OpenShift GitOps Operator Namespace Isolation Break
A flaw was found in openshift-gitops-operator-container. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This issue can have adverse effects on the platform monitoring stack, as the...
CVE-2024-13484
A flaw was found in openshift-gitops-operator-container. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This issue can have adverse effects on the platform monitoring stack, as the...
CVE-2024-13484 Openshift-gitops-operator-container: namespace isolation break
A flaw was found in openshift-gitops-operator-container. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This issue can have adverse effects on the platform monitoring stack, as the...
CVE-2024-13484
Technical details for CVE-2024-13484 are not publicly provided in the connected documents. The SUSE advisories mention the CVE but do not supply affected products/versions or root-cause details. Monitor for updates.
CVE-2024-13484
A flaw was found in ArgoCD. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This issue can have adverse effects on the platform monitoring stack, as the rule is rolled out cluster-wi...
PT-2025-2188
Name of the Vulnerable Software and Affected Versions openshift-gitops-operator-container affected versions not specified ArgoCD affected versions not specified Description A flaw was found in the software, allowing a namespace to create a rogue PrometheusRule when the...
CVE-2025-21613 vulnerabilities
Vulnerabilities for packages: packer, skaffold, kaniko, snyk-cli, grype, kaniko-fips, dagger, grafana-alloy-fips, nemo, tekton-pipelines, pulumi-language-yaml, datadog-agent-fips, zot, goreleaser, k9s, osv-scanner, kubevela, argo-events-fips, flux-kustomize-controller-fips, timoni, melange,...
argocd-cli-2.12.4-1.1 on GA media (moderate)
argocd-cli-2.12.4-1.1 on GA media Announcement ID: openSUSE-SU-2024:14374-1 Rating: moderate Cross-References: CVE-2024-45296 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...