Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentGitHub_MVULNRICHMENT:CVE-2024-41666
HistoryJul 24, 2024 - 5:16 p.m.

CVE-2024-41666 The Argo CD web terminal session does not handle the revocation of user permissions properly.

2024-07-2417:16:37
CWE-269
GitHub_M
github.com
7
argo cd
web terminal
vulnerability
unauthorized actions
kubernetes
patch
cve-2024-41666

CVSS3

4.7

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

AI Score

4.7

Confidence

High

EPSS

0

Percentile

16.1%

SSVC

Exploitation

poc

Automatable

no

Technical Impact

partial

JSON

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Argo CD has a Web-based terminal that allows users to get a shell inside a running pod, just as they would with kubectl exec. Starting in version 2.6.0, when the administrator enables this function and grants permission to the user p, role:myrole, exec, create, */*, allow, even if the user revokes this permission, the user can still perform operations in the container, as long as the user keeps the terminal view open for a long time. Although the token expiration and revocation of the user are fixed, however, the fix does not address the situation of revocation of only user p, role:myrole, exec, create, */*, allow permissions, which may still lead to the leakage of sensitive information. A patch for this vulnerability has been released in Argo CD versions 2.11.7, 2.10.16, and 2.9.21.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:argoproj:argo-cd:*:*:*:*:*:*:*:*"
    ],
    "vendor": "argoproj",
    "product": "argo-cd",
    "versions": [
      {
        "status": "affected",
        "version": "2.6.0",
        "lessThan": "2.9.21",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "2.10.0",
        "lessThan": "2.10.16",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "2.11.0",
        "lessThan": "2.11.7",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Related

osv 9
nvd 1
redhatcve 1
cvelist 1
veracode 1
cve 1
github 1
osv
osv
CGA-q7qx-gjwv-53j3
2024-08-08 11:04:52
The Argo CD web terminal session does not handle the revocation of user permissions properly in github.com/argoproj/argo-cd
2024-08-06 22:03:16
BIT-argo-cd-2024-41666
2024-07-26 07:16:03
nvd
nvd
CVE-2024-41666
2024-07-24 18:15:05
redhatcve
redhatcve
CVE-2024-41666
2024-07-25 08:08:05
cvelist
cvelist
CVE-2024-41666 The Argo CD web terminal session does not handle the revocation of user permissions properly.
2024-07-24 17:16:37
veracode
veracode
Information Disclosure
2024-07-25 07:12:14
cve
cve
CVE-2024-41666
2024-07-24 18:15:05
github
github
The Argo CD web terminal session does not handle the revocation of user permissions properly
2024-07-24 20:54:02

CVSS3

4.7

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

AI Score

4.7

Confidence

High

EPSS

0

Percentile

16.1%

SSVC

Exploitation

poc

Automatable

no

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2024-41666
osv9nvd1redhatcve1cvelist1veracode1cve1github1