CVE-2022-1025

Published July 12th, 2022

View on NVD ↗

CVSS v3

8.8

HIGH

CVSS v2

HIGH

Affected

PROJECT

Description

All unpatched versions of Argo CD starting with v1.0.0 are vulnerable to an improper access control bug, allowing a malicious user to potentially escalate their privileges to admin-level.

argoproj/argo-cd

Declarative Continuous Deployment for Kubernetes

GitHub

23K