CVE-2024-36106

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. It’s possible for authenticated users to enumerate clusters by name by inspecting error messages. It’s also possible to enumerate the names of projects with project-scoped clusters if you know the names of the clusters. This vulnerability is fixed in 2.11.3, 2.10.12, and 2.9.17.

CVSS v3 4.3 MEDIUM

4.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://github.com/argoproj/argo-cd/commit/c2647055c261a550e5da075793260f6524e65ad9	Patch
https://github.com/argoproj/argo-cd/security/advisories/GHSA-3cqf-953p-h5cp	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:argoproj:argo_cd::::::::
	cpe:2.3:a:argoproj:argo_cd::::::::
	cpe:2.3:a:argoproj:argo_cd::::::::

History

07 Aug 2024, 13:57

Type	Values Removed	Values Added
References	~~() https://github.com/argoproj/argo-cd/commit/c2647055c261a550e5da075793260f6524e65ad9 -~~	() https://github.com/argoproj/argo-cd/commit/c2647055c261a550e5da075793260f6524e65ad9 - Patch
References	~~() https://github.com/argoproj/argo-cd/security/advisories/GHSA-3cqf-953p-h5cp -~~	() https://github.com/argoproj/argo-cd/security/advisories/GHSA-3cqf-953p-h5cp - Vendor Advisory
CPE		cpe:2.3:a:argoproj:argo_cd::::::::
First Time		Argoproj Argoproj argo Cd

07 Jun 2024, 14:56

Type	Values Removed	Values Added
Summary		(es) Argo CD es una herramienta declarativa de entrega continua de GitOps para Kubernetes. Es posible que los usuarios autenticados enumeren los clústeres por nombre inspeccionando los mensajes de error. También es posible enumerar los nombres de proyectos con clústeres con ámbito de proyecto si conoce los nombres de los clústeres. Esta vulnerabilidad se solucionó en 2.11.3, 2.10.12 y 2.9.17.

06 Jun 2024, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-06-06 15:15

Updated : 2024-08-07 13:57

NVD link : CVE-2024-36106

Mitre link : CVE-2024-36106

CVE.ORG link : CVE-2024-36106

JSON object : View

Products Affected

argoproj

argo_cd

CWE

CWE-209

Generation of Error Message Containing Sensitive Information

{"id": "CVE-2024-36106", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.8}]}, "published": "2024-06-06T15:15:45.023", "references": [{"url": "https://github.com/argoproj/argo-cd/commit/c2647055c261a550e5da075793260f6524e65ad9", "tags": ["Patch"], "source": "security-advisories@github.com"}, {"url": "https://github.com/argoproj/argo-cd/security/advisories/GHSA-3cqf-953p-h5cp", "tags": ["Vendor Advisory"], "source": "security-advisories@github.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-209"}]}, {"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-209"}]}], "descriptions": [{"lang": "en", "value": "Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. It\u2019s possible for authenticated users to enumerate clusters by name by inspecting error messages. It\u2019s also possible to enumerate the names of projects with project-scoped clusters if you know the names of the clusters. This vulnerability is fixed in 2.11.3, 2.10.12, and 2.9.17."}, {"lang": "es", "value": "Argo CD es una herramienta declarativa de entrega continua de GitOps para Kubernetes. Es posible que los usuarios autenticados enumeren los cl\u00fasteres por nombre inspeccionando los mensajes de error. Tambi\u00e9n es posible enumerar los nombres de proyectos con cl\u00fasteres con \u00e1mbito de proyecto si conoce los nombres de los cl\u00fasteres. Esta vulnerabilidad se solucion\u00f3 en 2.11.3, 2.10.12 y 2.9.17."}], "lastModified": "2024-08-07T13:57:07.913", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:argoproj:argo_cd:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D52616B-A4C4-473C-881D-D1C9D360F646", "versionEndExcluding": "2.9.17", "versionStartExcluding": "0.11.0"}, {"criteria": "cpe:2.3:a:argoproj:argo_cd:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9572F68B-9CCC-4B52-90D8-07FDDDBD3D13", "versionEndExcluding": "2.10.12", "versionStartIncluding": "2.10.0"}, {"criteria": "cpe:2.3:a:argoproj:argo_cd:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF3F3CB7-820D-40C8-AAEA-F4D83F7B7BD9", "versionEndExcluding": "2.11.3", "versionStartIncluding": "2.11.0"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}