CVE-2022-24348 in Linux Foundation and Argoproj Products
Published on February 4, 2022
Argo CD before 2.1.9 and 2.2.x before 2.2.4 allows directory traversal related to Helm charts because of an error in helmTemplate in repository.go. For example, an attacker may be able to discover credentials stored in a YAML file.
Products Associated with CVE-2022-24348
stack.watch emails you whenever new vulnerabilities are published in Linux Foundation Argo Cd or Argoproj Argo Cd. Just hit a watch button to start following.
Exploit Probability
EPSS
3.40%
Percentile
87.30%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.