CVE-2020-8826 in Linux Foundation and Argoproj Products
Published on April 8, 2020
As of v1.5.0, the Argo web interface authentication system issued immutable tokens. Authentication tokens, once issued, were usable forever without expirationthere was no refresh or forced re-authentication.
Products Associated with CVE-2020-8826
stack.watch emails you whenever new vulnerabilities are published in Linux Foundation Argo Continuous Delivery or Argoproj Argo Cd. Just hit a watch button to start following.
Exploit Probability
EPSS
0.47%
Percentile
64.21%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.