CVE-2018-21034

Published April 9th, 2020

View on NVD ↗

CVSS v3

6.5

MEDIUM

CVSS v2

MEDIUM

Affected

PROJECT

Description

In Argo versions prior to v1.5.0-rc1, it was possible for authenticated Argo users to submit API calls to retrieve secrets and other manifests which were stored within git.

argoproj/argo-cd

Declarative Continuous Deployment for Kubernetes

GitHub

23K