An issue was discovered in Argo CD before 1.8.4. Accessing the endpoint /api/version leaks internal information for the system, and this endpoint is not protected with authentication.
Metrics
Affected Vendors & Products
References
History
Wed, 07 Aug 2024 16:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Argoproj
Argoproj argo Cd |
|
CPEs | cpe:2.3:a:argoproj:argo_cd:*:*:*:*:*:*:*:* | |
Vendors & Products |
Linuxfoundation
Linuxfoundation argo-cd |
Argoproj
Argoproj argo Cd |
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-03-15T14:40:02
Updated: 2024-08-03T20:33:41.495Z
Reserved: 2021-02-09T00:00:00
Link: CVE-2021-26923
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-03-15T15:15:14.680
Modified: 2024-11-21T05:57:03.083
Link: CVE-2021-26923
Redhat
No data.