Argo Cd Releases Patch For Zero Day Vulnerability
The vulnerability was discovered by Apiiro’s Security Research team and explained in a blog post released alongside the patch. Argo CD is a popular open source Continuous Delivery platform, and the vulnerability – tagged as CVE-2022-24348 with a CVSS score of 7.7 – “allows malicious actors to load a Kubernetes Helm Chart YAML file to the vulnerability and ‘hop’ from their application ecosystem to other applications’ data outside of the user’s scope....