cbcvebase.
CVE-2023-40025
published 2023-08-23

CVE-2023-40025: Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. All versions of Argo CD starting from version 2.6.0 have a bug where open web…

PriorityP337high7.1CVSS 3.1
AVNACLPRLUINSUCHILAN
EPSS
0.48%
38.1th percentile
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. All versions of Argo CD starting from version 2.6.0 have a bug where open web terminal sessions do not expire. This bug allows users to send any websocket messages even if the token has already expired. The most straightforward scenario is when a user opens the terminal view and leaves it open for an extended period. This allows the user to view sensitive information even when they should have been logged out already. A patch for this vulnerability has been released in the following Argo CD versions: 2.6.14, 2.7.12 and 2.8.1.

Affected

13 ranges
VendorProductVersion rangeFixed in
argoprojargo-cd
argoprojargo-cd
argoprojargo-cd
argoprojargo_cd
argoprojargo_cd
argoprojargo_cd2.6.0 – 2.6.13
github.comargoproj_argo-cd_v2>= 2.0.0-20230718200744-12a5a7a70d6e < 2.0.0-20230821201509-e047efa8f9512.0.0-20230821201509-e047efa8f951
github.comargoproj_argo-cd_v2>= 2.10.0 < 2.10.162.10.16
github.comargoproj_argo-cd_v2>= 2.11.0 < 2.11.72.11.7
github.comargoproj_argo-cd_v2>= 2.6.0 < 2.6.142.6.14
github.comargoproj_argo-cd_v2>= 2.6.0 < 2.9.212.9.21
github.comargoproj_argo-cd_v2>= 2.7.0 < 2.7.122.7.12
github.comargoproj_argo-cd_v2>= 2.8.0 < 2.8.12.8.1

CVSS provenance

nvdv3.17.1HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
ghsa7.1HIGH
osv7.1HIGH
vendor_redhat4.7MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.