EPSS
Percentile
61.1%
github.com/argoproj/argo-cd is vulnerable to information disclosure. An authenticated user is able to retrieve secrets and manifests that are stored within the git via API calls to manifests.
github.com/argoproj/argo-cd/blob/a1afe44066fcd0a0ab90a02a23177164bbad42cf/util/diff/diff.go#L399
github.com/argoproj/argo-cd/issues/470
github.com/argoproj/argo-cd/pull/3088
www.soluble.ai/blog/argo-cves-2020