CVE-2021-26923

Published March 15th, 2021

View on NVD ↗

CVSS v3

7.5

HIGH

CVSS v2

MEDIUM

Affected

PROJECT

Description

An issue was discovered in Argo CD before 1.8.4. Accessing the endpoint /api/version leaks internal information for the system, and this endpoint is not protected with authentication.

argoproj/argo-cd

Declarative Continuous Deployment for Kubernetes

GitHub

23K