A critical vulnerability has been discovered in Argo CD that allows API tokens with limited permissions to access sensitive repository credentials. The flaw in the project details API endpoint exposes usernames and passwords, undermining the platform’s security model by granting access to secrets without explicit permissions. The vulnerability stems from an improper authorization check in […]
The post Critical Argo CD API Vulnerability Exposes Repository Credentials appeared first on Cyber Security News.
This article has been indexed from Cyber Security News
Read the original article: