HIGHCVE-2026-43824Published Modified CNA mitre
CVE-2026-43824: In Argo CD 3
In Argo CD 3.2.0 before 3.2.11 and 3.3.0 before 3.3.9, ServerSideDiff allows reading cleartext Kubernetes Secret data.
Metrics
- CVSS v3.1
- 7.7
- Severity
- HIGH
- Fixed in
- 3.2.11
- Affected Products
- 1
Fix available
3.2.113.3.9
Affected packages
- argoproj / Argo CD< 3.2.11 (from 3.2.0) · < 3.3.9 (from 3.3.0)
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:NReferences