github.com/argoproj/argo-cd is vulnerable to Information Disclosure. The vulnerability is due to a bug that allows unauthorized users to enumerate application names by inspecting API error messages, which can then be used as a starting point for another attack.
argo.com
github.com/advisories/GHSA-2q5c-qw9c-fmvq
github.com/argoproj/argo-cd/commit/06b9a25f6d95ebebcd636331e55139dded143ee5
github.com/argoproj/argo-cd/commit/63f9622b004d35c486f15d8bf0cb460e80f8b25f
github.com/argoproj/argo-cd/commit/ccb64f1c7ef57aa18c2edf0ede9a8ffa64de7927
github.com/argoproj/argo-cd/releases/tag/v2.4.28
github.com/argoproj/argo-cd/releases/tag/v2.5.16
github.com/argoproj/argo-cd/releases/tag/v2.6.7
github.com/argoproj/argo-cd/security/advisories/GHSA-2q5c-qw9c-fmvq
github.com/chunklhit/cve/blob/master/argo/argo-cd/application_enumeration.md