Lucene search
Veracode Vulnerability DatabaseVERACODE:34809HistoryMar 24, 2022 - 7:58 a.m.
Information Disclosure
2022-03-2407:58:11
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
github.com/argoproj/argo-cd
information disclosure
vulnerability
access controls
admin-level
sensitive information
EPSS
0.001
Percentile
48.7%
github.com/argoproj/argo-cd is vulnerable to information disclosure. The vulnerability exists in application resource APIs because the access controls are not properly handled which allows an attacker to escalate their privileges to admin-level and access the sensitive information.
Related
cvelist
cvelist
cve
cve
CVE-2022-24768
2022-03-23 22:15:13
prion
prion
Improper access control
2022-03-23 22:15:00
gitlab
gitlab
Exposure of Sensitive Information to an Unauthorized Actor
2022-03-24 00:00:00
github
github
Improper access control allows admin privilege escalation in Argo CD
2022-03-24 00:18:54
nvd
nvd
CVE-2022-24768
2022-03-23 22:15:13
osv
osv
Argo CD improper access control bug can allow malicious user to escalate privileges to admin level
2022-07-13 00:00:41
Improper access control allows admin privilege escalation in Argo CD
2022-03-24 00:18:54
CVE-2022-24768
2022-03-23 22:15:13