CVE-2018-21034
MEDIUM6.5EPSS 0.88%Argo Exposure of Sensitive Information in github.com/argoproj/argo-cd
Published: 5/24/2022Modified: 3/3/2026
Description
Argo Exposure of Sensitive Information in github.com/argoproj/argo-cd
Affected packages (2)
- Go/github.com/argoproj/argo-cdfrom 0, < 1.5.0-rc1
- Go/github.com/argoproj/argo-cdfrom 0, < 1.5.0-rc1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
References (8)
- ADVISORYhttps://github.com/advisories/GHSA-xj7v-c82w-92q2
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2018-21034
- PATCHhttps://github.com/argoproj/argo-cd
- WEBhttps://github.com/argoproj/argo-cd/blob/a1afe44066fcd0a0ab90a02a23177164bbad42cf/util/diff/diff.go#L399
- WEBhttps://github.com/argoproj/argo-cd/commit/916d4aed5775fead4ab75f47c1d352cd0e73b815
- WEBhttps://github.com/argoproj/argo-cd/issues/470
- WEBhttps://github.com/argoproj/argo-cd/pull/3088
- WEBhttps://www.soluble.ai/blog/argo-cves-2020