2 matches found
CVE-2022-24768 Improper access control allows admin privilege escalation in Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. All unpatched versions of Argo CD starting with 1.0.0 are vulnerable to an improper access control bug, allowing a malicious user to potentially escalate their privileges to admin-level. Versions starting with 0.8.0 and 0.5...
CVE-2022-24768
CVE-2022-24768 affects Argo CD, an RBAC-controlled GitOps tool for Kubernetes, via an improper access control bug that can enable admin-level privilege escalation for an authorized user who already has push access to an Application’s source repository or has sync and override access. Exposures va...