CVE-2023-40025

Exploit

EPSS 0.16%
Published 23.08.2023 20:15:08
Last modified 21.11.2024 08:18:32
Source security-advisories@github.com
Teams watchlist Login
Open Login

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. All versions of Argo CD starting from version 2.6.0 have a bug where open web terminal sessions do not expire. This bug allows users to send any websocket messages even if the token has already expired. The most straightforward scenario is when a user opens the terminal view and leaves it open for an extended period. This allows the user to view sensitive information even when they should have been logged out already. A patch for this vulnerability has been released in the following Argo CD versions: 2.6.14, 2.7.12 and 2.8.1.

Affected products Warnungen 0 Metrics 3 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Argoproj ≫ Argo Cd Version >= 2.6.0 <= 2.6.13

Argoproj ≫ Argo Cd Version2.7.11

Argoproj ≫ Argo Cd Version2.8.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.16%	0.369

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.1	2.8	4.2	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
security-advisories@github.com	4.7	1.2	3.4	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

CWE-613 Insufficient Session Expiration

According to WASC, "Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization."

https://github.com/argoproj/argo-cd/commit/e047efa8f9518c54d00d2e4493b64bc4dba98478

Patch

https://github.com/argoproj/argo-cd/security/advisories/GHSA-c8xw-vjgf-94hr

Vendor Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2023-40025

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-40025

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-40025

EUVD