Vulnerability Description
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. All versions of Argo CD starting from version 2.6.0 have a bug where open web terminal sessions do not expire. This bug allows users to send any websocket messages even if the token has already expired. The most straightforward scenario is when a user opens the terminal view and leaves it open for an extended period. This allows the user to view sensitive information even when they should have been logged out already. A patch for this vulnerability has been released in the following Argo CD versions: 2.6.14, 2.7.12 and 2.8.1.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Argoproj | Argo Cd | >= 2.6.0, <= 2.6.13 |
Related Weaknesses (CWE)
References
- https://github.com/argoproj/argo-cd/commit/e047efa8f9518c54d00d2e4493b64bc4dba98Patch
- https://github.com/argoproj/argo-cd/security/advisories/GHSA-c8xw-vjgf-94hrExploitVendor Advisory
- https://github.com/argoproj/argo-cd/commit/e047efa8f9518c54d00d2e4493b64bc4dba98Patch
- https://github.com/argoproj/argo-cd/security/advisories/GHSA-c8xw-vjgf-94hrExploitVendor Advisory
FAQ
What is CVE-2023-40025?
CVE-2023-40025 is a vulnerability with a CVSS score of 4.7 (MEDIUM). Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. All versions of Argo CD starting from version 2.6.0 have a bug where open web terminal sessions do not expire. This bug allows...
How severe is CVE-2023-40025?
CVE-2023-40025 has been rated MEDIUM with a CVSS base score of 4.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-40025?
Check the references section above for vendor advisories and patch information. Affected products include: Argoproj Argo Cd.