Threat Post

Argo CD Security Bug Opens Kubernetes Cloud Apps to Attackers

The popular continuous-delivery platform has a path-traversal bug (CVE-2022-24348) that could allow cyberattackers to hop from one application ecosystem to another. A high-severity security ...
Infosecurity-magazine.com

Major Vulnerability Found in Argo CD

Security researchers at Apiiro have discovered a significant software supply chain zero-day vulnerability in the popular open-source continuous delivery platform, Argo CD. Used by thousands of ...
ZDNet

Argo CD releases patch for zero-day vulnerability

Argo CD released a patch this week for a zero-day vulnerability enabling attackers to access sensitive information like passwords and API keys. The vulnerability was discovered by Apiiro's Security ...
InfoWorld

How to protect your Kubernetes infrastructure from the Argo CD vulnerability

A zero-day vulnerability in Argo CD could be putting sensitive information like passwords and API keys at risk. Are you protected? Argo CD is a popular open source, continuous delivery (CD) platform ...
InfoQ

Alex Matyushentsev on Argo CD, Argo Rollouts, and Continuous Delivery with Kubernetes

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Bleeping Computer

Argo CD vulnerability leaks sensitive info from Kubernetes apps

A vulnerability in Argo CD, used by thousands of orgs for deploying applications to Kubernetes, can be leveraged in attacks to disclose sensitive information such as passwords and API keys. Tracked as ...