CVE-2022-31034

 

Published at: - 15-06-2022 02:00

Last modified: - 15-06-2022 02:00

Total changes: - 1

Description

CVE-2022-31034 argocd: vulnerable to a variety of attacks when an SSO login is initiated from the Argo CD CLI or the UI.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

 

Verification logic

 

Reference

• https://bugzilla.redhat.com/show_bug.cgi?id=2096282
• https://github.com/argoproj/argo-cd/security/advisories/GHSA-2m7h-86qq-fp4v
• https://access.redhat.com/errata/RHSA-2022:5187
• https://access.redhat.com/errata/RHSA-2022:5192
• https://access.redhat.com/errata/RHSA-2022:5153
• https://access.redhat.com/errata/RHSA-2022:5152

 

Keywords

REDHAT

 

CVE-2022-31034

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures