CVE-2026-43824
published 2026-05-02CVE-2026-43824: In Argo CD 3.2.0 before 3.2.11 and 3.3.0 before 3.3.9, ServerSideDiff allows reading cleartext Kubernetes Secret data.
PriorityP343high7.7CVSS 3.1
AVNACLPRLUINSCCHINAN
EPSS
0.22%
13.0th percentile
In Argo CD 3.2.0 before 3.2.11 and 3.3.0 before 3.3.9, ServerSideDiff allows reading cleartext Kubernetes Secret data.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| argoproj | argo_cd | >= 3.2.0 < 3.2.11 | 3.2.11 |
| argoproj | argo_cd | >= 3.3.0 < 3.3.9 | 3.3.9 |
| odf4 | odf-multicluster-rhel9-operator | — | — |
| openshift-gitops-1 | argocd-agent-rhel8 | — | — |
| openshift-gitops-1 | argocd-agent-rhel9 | — | — |
| openshift-gitops-1 | argocd-image-updater-rhel8 | — | — |
| openshift-gitops-1 | argocd-image-updater-rhel9 | — | — |
| openshift-gitops-1 | argocd-rhel8 | — | — |
| openshift-gitops-1 | argocd-rhel9 | — | — |
| openshift-gitops-1 | gitops-rhel8 | — | — |
| openshift-gitops-1 | gitops-rhel8-operator | — | — |
| openshift-gitops-1 | gitops-rhel9 | — | — |
| openshift-gitops-1 | gitops-rhel9-operator | — | — |
CVSS provenance
nvdv3.17.7HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
vendor_redhat7.7HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
github.com/argoproj/argo-cd/: Argo CD: Information disclosure via ServerSideDiff allows reading Kubernetes Secret data
vendor_redhat·2026-05-02·CVSS 7.7
CVE-2026-43824 [HIGH] CWE-312 github.com/argoproj/argo-cd/: Argo CD: Information disclosure via ServerSideDiff allows reading Kubernetes Secret data
github.com/argoproj/argo-cd/: Argo CD: Information disclosure via ServerSideDiff allows reading Kubernetes Secret data
A flaw was found in Argo CD. The ServerSideDiff feature allows for the reading of cleartext Kubernetes Secret data. This vulnerability could lead to information disclosure, potentially exposing sensitive configuration details within the Kubernetes environment.
Statement: This is an Important information disclosure flaw in Argo CD, as deployed in Red Hat OpenShift GitOps. The ServerSideDiff feature allows for the reading of cleartext Kubernetes Secret data, which could expose sensitive configuration details. This is considered Important due to the potential for unauthorized access to critical credentials and sensitive information within the Kubernetes environment.
This vu
VulDB
argoproj Argo CD up to 3.2.10/3.3.8 ServerSideDiff improper removal of sensitive information before storage or transfer (GHSA-3v3m-wc6v-x4x3 / EUVD-2026-26726)
vuldb·2026-05-02·CVSS 7.7
CVE-2026-43824 [HIGH] argoproj Argo CD up to 3.2.10/3.3.8 ServerSideDiff improper removal of sensitive information before storage or transfer (GHSA-3v3m-wc6v-x4x3 / EUVD-2026-26726)
A vulnerability, which was classified as problematic, has been found in argoproj Argo CD up to 3.2.10/3.3.8. The affected element is an unknown function of the component ServerSideDiff. Performing a manipulation results in improper removal of sensitive information before storage or transfer.
This vulnerability is known as CVE-2026-43824. Remote exploitation of the attack is possible. No exploit is available.
It is advisable to upgrade the affected component.
GHSA
GHSA-c7mp-5hg2-gfh8: In Argo CD 3
ghsa_unreviewed·2026-05-02
CVE-2026-43824 [HIGH] CWE-212 GHSA-c7mp-5hg2-gfh8: In Argo CD 3
In Argo CD 3.2.0 before 3.2.11 and 3.3.0 before 3.3.9, ServerSideDiff allows reading cleartext Kubernetes Secret data.
No detection rules found.
No public exploits indexed.
Hackernews
⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More
blogs_hackernews·2026-05-18·CVSS 6.1
CVE-2026-42897 [MEDIUM] ⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More
Home
Threat Intelligence
Vulnerabilities
Cyber Attacks
Webinars
Expert Insights
Awards
Webinars
Awards
Free eBooks
About THN
Jobs
Advertise with us
## ⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More
Monday opens with a trust problem. A mail server flaw is under active use. A network control system was targeted. Trusted packages were poisoned. A fake model page pushed a stealer. Then came the familiar ransom claim: the data was returned and deleted.
The pattern is clear. One weak dependency can leak keys. One leaked key can open cloud access. One cloud foothold can become a production incident. AI is speeding up vulnerability discovery, attackers are moving quickly, and old exposure still keeps paying off.
Patch the quiet risks first. Let’s g
Bugzilla
CVE-2026-43824 github.com/argoproj/argo-cd/: Argo CD: Information disclosure via ServerSideDiff allows reading Kubernetes Secret data
bugzilla·2026-05-02·CVSS 7.7
CVE-2026-43824 [HIGH] CVE-2026-43824 github.com/argoproj/argo-cd/: Argo CD: Information disclosure via ServerSideDiff allows reading Kubernetes Secret data
CVE-2026-43824 github.com/argoproj/argo-cd/: Argo CD: Information disclosure via ServerSideDiff allows reading Kubernetes Secret data
In Argo CD 3.2.0 before 3.2.11 and 3.3.0 before 3.3.9, ServerSideDiff allows reading cleartext Kubernetes Secret data.
https://github.com/argoproj/argo-cd/security/advisories/GHSA-3v3m-wc6v-x4x3https://access.redhat.com/security/cve/CVE-2026-43824https://bugzilla.redhat.com/show_bug.cgi?id=2464613https://github.com/argoproj/argo-cd/security/advisories/GHSA-3v3m-wc6v-x4x3https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-43824.json
2026-05-02
Published