Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GO-2026-5099
  • Go/github.com/argoproj/argo-cd
  • Go/github.com/argoproj/argo-cd/v2
  • Go/github.com/argoproj/argo-cd/v3
 ArgoCD ServerSideDiff is vulnerable to Kubernetes Secret Extraction in github.com/argoproj/argo-cd 2 days ago
  • Fix available
CLEANSTART-2026-WF25734
  • CleanStart/argo-cd
 Security fixes for CVE-2025-47912, CVE-2025-55190, CVE-2025-55191, CVE-2025-58183, CVE-2025-58185, CVE-2025-58186, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-59537, CVE-2025-59538, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2026-24051, CVE-2026-25680, CVE-2026-25681, CVE-2026-27136, CVE-2026-27145, CVE-2026-29181, CVE-2026-33186, CVE-2026-33762, CVE-2026-34165, CVE-2026-34986, CVE-2026-35469, CVE-2026-39821, CVE-2026-39827, CVE-2026-39828, CVE-2026-39829, CVE-2026-39830, CVE-2026-39831, CVE-2026-39832, CVE-2026-39833, CVE-2026-39834, CVE-2026-39835, CVE-2026-39883, CVE-2026-41506, CVE-2026-42502, CVE-2026-42504, CVE-2026-42506, CVE-2026-42507, CVE-2026-42508, CVE-2026-42880, CVE-2026-44740, CVE-2026-44973, CVE-2026-45022, CVE-2026-45570, CVE-2026-45571, CVE-2026-45737, CVE-2026-45738, CVE-2026-46595, CVE-2026-46597, CVE-2026-46598, ghsa-2v5j-vhc3-9cwm, ghsa-2vgg-9h3w-qbr4, ghsa-2xsj-vh29-9cwm, ghsa-37cx-329c-33x3, ghsa-389r-gv7p-r3rp, ghsa-3v3m-wc6v-x4x3, ghsa-3wgm-2mw2-vh5m, ghsa-3xc5-wrhm-f963, ghsa-4x4m-3c2p-qppc, ghsa-6v2p-p543-phr9, ghsa-78h2-9frx-2jm8, ghsa-92cp-5422-2m47, ghsa-93mq-9ffx-83m2, ghsa-crhj-59gh-8x96, ghsa-f6x5-jh6r-wrfv, ghsa-gm2x-2g9h-ccm8, ghsa-gxhx-2686-5h9g, ghsa-h98r-wv3h-fr38, ghsa-hfvc-g4fc-pqhx, ghsa-hj2p-8wj8-pfq4, ghsa-j5w8-q4qc-rx2x, ghsa-jhf3-xxhw-2wpp, ghsa-m3xc-h892-ggx6, ghsa-m7cr-m3pv-hgrp, ghsa-mh2q-q3fh-2475, ghsa-mh63-6h87-95cp, ghsa-mw99-9chc-xw7r, ghsa-pc3f-x583-g7j2, ghsa-qw64-3x98-g7q2, ghsa-rg3g-4rw9-gqrp applied in versions: 2.13.9-r0, 2.14.20-r0, 3.0.16-r0, 3.0.19-r0, 3.1.4-r0, 3.1.8.-r0, 3.1.9-r4, 3.2.7-r0, 3.3.3-r0, 3.3.4-r0, 3.3.5-r0, 3.3.5-r1, 3.3.5-r2, 3.3.5-r3 08 Jun
  • Fix available
CLEANSTART-2026-HO16255
  • CleanStart/argo-cd
 Security fixes for CVE-2025-47912, CVE-2025-55190, CVE-2025-55191, CVE-2025-58183, CVE-2025-58185, CVE-2025-58186, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-59537, CVE-2025-59538, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2026-24051, CVE-2026-25679, CVE-2026-25680, CVE-2026-25681, CVE-2026-27136, CVE-2026-27137, CVE-2026-27138, CVE-2026-27139, CVE-2026-27142, CVE-2026-27145, CVE-2026-29181, CVE-2026-33186, CVE-2026-33762, CVE-2026-34165, CVE-2026-34986, CVE-2026-35469, CVE-2026-39821, CVE-2026-39883, CVE-2026-41506, CVE-2026-42502, CVE-2026-42504, CVE-2026-42506, CVE-2026-42507, CVE-2026-42880, CVE-2026-44740, CVE-2026-44973, CVE-2026-45022, CVE-2026-45570, CVE-2026-45571, CVE-2026-45737, CVE-2026-45738, ghsa-2v5j-vhc3-9cwm, ghsa-2vgg-9h3w-qbr4, ghsa-2xsj-vh29-9cwm, ghsa-37cx-329c-33x3, ghsa-389r-gv7p-r3rp, ghsa-3v3m-wc6v-x4x3, ghsa-3wgm-2mw2-vh5m, ghsa-3xc5-wrhm-f963, ghsa-4x4m-3c2p-qppc, ghsa-6v2p-p543-phr9, ghsa-78h2-9frx-2jm8, ghsa-92cp-5422-2m47, ghsa-93mq-9ffx-83m2, ghsa-crhj-59gh-8x96, ghsa-f6x5-jh6r-wrfv, ghsa-gm2x-2g9h-ccm8, ghsa-gxhx-2686-5h9g, ghsa-h98r-wv3h-fr38, ghsa-hfvc-g4fc-pqhx, ghsa-hj2p-8wj8-pfq4, ghsa-j5w8-q4qc-rx2x, ghsa-jhf3-xxhw-2wpp, ghsa-m3xc-h892-ggx6, ghsa-m7cr-m3pv-hgrp, ghsa-mh2q-q3fh-2475, ghsa-mh63-6h87-95cp, ghsa-mw99-9chc-xw7r, ghsa-pc3f-x583-g7j2, ghsa-qw64-3x98-g7q2, ghsa-rg3g-4rw9-gqrp applied in versions: 2.13.9-r0, 2.14.20-r0, 3.0.16-r0, 3.0.19-r0, 3.1.4-r0, 3.1.8.-r0, 3.1.9-r4, 3.2.7-r0, 3.2.7-r1, 3.2.7-r2, 3.2.7-r3, 3.2.7-r4 08 Jun
  • Fix available
MINI-8x9w-rc4c-jhwr
  • MinimOS/argocd-image-updater-fips-1.2
 See record for full details 14 May
  • Fix available
MINI-jjh2-jmmw-q3wx
  • MinimOS/argocd-image-updater-1.2
 See record for full details 13 May
  • Fix available
BIT-argo-cd-2026-42880
  • Bitnami/argo-cd
 ArgoCD ServerSideDiff is vulnerable to Kubernetes Secret Extraction 11 May
  • Fix available
  • Severity - 9.6 (Critical)
MINI-c7mv-r2mp-9m4f
  • MinimOS/argocd-fips-3.2
  • MinimOS/argocd-fips-3.2-compat
  • MinimOS/argocd-fips-3.2-repo-server
 See record for full details 08 May
  • Fix available
MINI-5wj2-2gx9-6ghj
  • MinimOS/argocd-3.2
  • MinimOS/argocd-3.2-compat
  • MinimOS/argocd-3.2-repo-server
 See record for full details 08 May
  • Fix available
MINI-rfv5-v65f-w2gh
  • MinimOS/argocd-fips-3.3
  • MinimOS/argocd-fips-3.3-compat
  • MinimOS/argocd-fips-3.3-repo-server
 See record for full details 08 May
  • Fix available
MINI-hr4m-jxw3-pc6j
  • MinimOS/argocd-image-updater-1.1
  • MinimOS/argocd-image-updater-1.1-compat
 See record for full details 08 May
  • Fix available
MINI-9pqv-p6pw-r96j
  • MinimOS/argocd-3.3
  • MinimOS/argocd-3.3-compat
  • MinimOS/argocd-3.3-repo-server
 See record for full details 08 May
  • Fix available
MINI-7vwh-fq97-g2xm
  • MinimOS/argocd-image-updater-fips-1.1
 See record for full details 08 May
  • Fix available
GHSA-3v3m-wc6v-x4x3
  • Go/github.com/argoproj/argo-cd/v3
 ArgoCD ServerSideDiff is vulnerable to Kubernetes Secret Extraction 07 May
  • Fix available
  • Severity - 9.6 (Critical)