Exposure of System Data to an Unauthorized Control Sphere vulnerability in web UI of Argo CD allows attacker to cause leaked secret data into web UI error messages and logs. This issue affects Argo CD 1.8 versions prior to 1.8.7; 1.7 versions prior to 1.7.14.
References
Link | Resource |
---|---|
https://github.com/argoproj/argo-cd/security/advisories/GHSA-fp89-h8pj-8894 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: palo_alto
Published: 2021-03-15T00:00:00
Updated: 2021-05-12T22:45:13
Reserved: 2021-01-06T00:00:00
Link: CVE-2021-23135
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-05-12T23:15:07.757
Modified: 2022-08-30T18:15:54.343
Link: CVE-2021-23135
JSON object: View
Redhat Information
No data.