2 matches found
The vulnerability of the ignoreDifferences configuration in the declarative delivery tool for GitOps for Kubernetes Argo CD allows a attacker to trigger a service failure.
The vulnerability of the ignoreDifferences configuration option in GitOps’ continuous delivery tool for Kubernetes Argo CD is related to an uncontrolled resource consumption when processing the jqPathExpressions parameter. Exploiting this vulnerability could allow a malicious actor to cause servi...
PT-2024-5350 · Jq +1 · Jq +1
Name of the Vulnerable Software and Affected Versions: Argo CD versions prior to 2.10.8 Argo CD versions prior to 2.9.13 Argo CD versions prior to 2.8.17 Description: The issue is related to a Denial of Service DoS vulnerability via Out of Memory OOM using jq in ignoreDifferences. This...