Lucene search
+L

10 matches found

RedHat Linux
RedHat Linux
added 2024/04/10 12:41 p.m.48 views

Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.12.1 security update

An update is now available for Red Hat OpenShift GitOps v1.12.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS6.6AI score0.01176EPSS
Exploits2References6
RedHat Linux
RedHat Linux
added 2024/04/10 12:21 p.m.75 views

Important: Red Hat Security Advisory: GitOps 1.12.1- Argo CD CLI and MicroShift GitOps security update

An update is now available for Red Hat OpenShift GitOps v1.12.1 for Argo CD CLI and MicroShift GitOps. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...

9.8CVSS6.6AI score0.01176EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2024/04/10 12:0 a.m.61 views

RHEL 8 / 9 : GitOps 1.12.1- Argo CD CLI and MicroShift GitOps (RHSA-2024:1752)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1752 advisory. Errata Advisory for Red Hat OpenShift GitOps v1.12.1- Argo CD CLI and MicroShift GitOps. Security Fixes: argo-cd: Denial of Service Due ...

9.8CVSS6.7AI score0.01176EPSS
Exploits2References13
RedHat Linux
RedHat Linux
added 2024/04/08 4:37 p.m.34 views

Important: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.10.4 security update

An update is now available for Red Hat OpenShift GitOps v1.10.4. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS6.6AI score0.01176EPSS
Exploits2References8
RedhatCVE
RedhatCVE
added 2024/03/14 5:7 a.m.32 views

CVE-2023-50726

A flaw was found in the Argo CD package. An improper validation bug allows users to sync local manifests on app creation, who have create privileges but not override privileges. All other restrictions, including AppProject restrictions, are still enforced. The only restriction that is not enforce...

6.4CVSS6.3AI score0.00532EPSS
Exploits0References6
Circl
Circl
added 2024/03/13 10:26 p.m.7 views

CVE-2023-50726

creationtimestamp| type| source ---|---|--- 2024-03-13 22:26:38+00:00| seen| https://t.me/ctinow/207221 2024-03-13 22:31:41+00:00| seen| https://t.me/ctinow/207239 2024-03-14 06:16:28+00:00| seen| https://t.me/ctinow/207493...

6.4CVSS6.2AI score0.00532EPSS
Exploits0References3
Chainguard
Chainguard
added 2024/03/13 9:15 p.m.47 views

CVE-2023-50726 vulnerabilities

Vulnerabilities for packages: argo-cd, argo-cd-fips...

6.4CVSS6.6AI score0.00532EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/03/13 8:50 p.m.14 views

CVE-2023-50726 Users with `create` but not `override` privileges can perform local sync in argo-cd

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. "Local sync" is an Argo CD feature that allows developers to temporarily override an Application's manifests with locally-defined manifests. Use of the feature should generally be limited to highly-trusted users, since it...

6.4CVSS6.4AI score0.00532EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/03/13 8:50 p.m.73 views

CVE-2023-50726 Users with `create` but not `override` privileges can perform local sync in argo-cd

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. "Local sync" is an Argo CD feature that allows developers to temporarily override an Application's manifests with locally-defined manifests. Use of the feature should generally be limited to highly-trusted users, since it...

6.4CVSS6.6AI score0.00532EPSS
Exploits0References3
CVE
CVE
added 2024/03/13 8:50 p.m.306 views

CVE-2023-50726

CVE-2023-50726 affects Argo CD’s Local Sync feature, which lets developers override an application's manifests with locally-defined ones. An improper validation bug allows users with create, but not override, privileges to sync local manifests during app creation, bypassing git/Helm/OCI source re...

6.4CVSS6.6AI score0.00532EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder