CVE-2018-21034 - Vulnerability Details - OpenCVE

In Argo versions prior to v1.5.0-rc1, it was possible for authenticated Argo users to submit API calls to retrieve secrets and other manifests which were stored within git.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Argoproj	Argo Cd

Configuration 1 [-]

cpe:2.3:a:argoproj:argo_cd:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://github.com/argoproj/argo-cd/blob/a1afe44066fcd0a0ab90a02a23177164bbad42cf/util/diff/diff.go#L399
https://github.com/argoproj/argo-cd/issues/470
https://github.com/argoproj/argo-cd/pull/3088
https://www.soluble.ai/blog/argo-cves-2020

History

Wed, 07 Aug 2024 16:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Argoproj Argoproj argo Cd
CPEs	cpe:2.3:a:linuxfoundation:argo_continuous_delivery::::::kubernetes::*	cpe:2.3:a:argoproj:argo_cd::::::::
Vendors & Products	Linuxfoundation Linuxfoundation argo Continuous Delivery	Argoproj Argoproj argo Cd

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-04-09T16:18:37

Updated: 2024-08-05T12:19:27.421Z

Reserved: 2020-02-10T00:00:00

Link: CVE-2018-21034

Vulnrichment

No data.

NVD

Status : Modified

Published: 2020-04-09T17:15:12.703

Modified: 2024-11-21T04:02:44.707

Link: CVE-2018-21034

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "In Argo versions prior to v1.5.0-rc1, it was possible for authenticated Argo users to submit API calls to retrieve secrets and other manifests which were stored within git."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2020-04-09T16:18:46", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://github.com/argoproj/argo-cd/blob/a1afe44066fcd0a0ab90a02a23177164bbad42cf/util/diff/diff.go#L399"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/argoproj/argo-cd/issues/470"}, {"tags": ["x_refsource_MISC"], "url": "https://github.com/argoproj/argo-cd/pull/3088"}, {"tags": ["x_refsource_MISC"], "url": "https://www.soluble.ai/blog/argo-cves-2020"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-21034", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "In Argo versions prior to v1.5.0-rc1, it was possible for authenticated Argo users to submit API calls to retrieve secrets and other manifests which were stored within git."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://github.com/argoproj/argo-cd/blob/a1afe44066fcd0a0ab90a02a23177164bbad42cf/util/diff/diff.go#L399", "refsource": "MISC", "url": "https://github.com/argoproj/argo-cd/blob/a1afe44066fcd0a0ab90a02a23177164bbad42cf/util/diff/diff.go#L399"}, {"name": "https://github.com/argoproj/argo-cd/issues/470", "refsource": "MISC", "url": "https://github.com/argoproj/argo-cd/issues/470"}, {"name": "https://github.com/argoproj/argo-cd/pull/3088", "refsource": "MISC", "url": "https://github.com/argoproj/argo-cd/pull/3088"}, {"name": "https://www.soluble.ai/blog/argo-cves-2020", "refsource": "MISC", "url": "https://www.soluble.ai/blog/argo-cves-2020"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T12:19:27.421Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/argoproj/argo-cd/blob/a1afe44066fcd0a0ab90a02a23177164bbad42cf/util/diff/diff.go#L399"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/argoproj/argo-cd/issues/470"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/argoproj/argo-cd/pull/3088"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.soluble.ai/blog/argo-cves-2020"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2018-21034", "datePublished": "2020-04-09T16:18:37", "dateReserved": "2020-02-10T00:00:00", "dateUpdated": "2024-08-05T12:19:27.421Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:argoproj:argo_cd:*:*:*:*:*:*:*:*", "matchCriteriaId": "5129B5E3-ABD7-4E99-BCF1-6EA5290F7108", "versionEndIncluding": "1.4.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "In Argo versions prior to v1.5.0-rc1, it was possible for authenticated Argo users to submit API calls to retrieve secrets and other manifests which were stored within git."}, {"lang": "es", "value": "En Argo versiones anteriores a v1.5.0-rc1, era posible que los usuarios de Argo autenticados enviaran llamadas a la API para recuperar secretos y otros manifiestos que eran almacenados dentro de git."}], "id": "CVE-2018-21034", "lastModified": "2024-11-21T04:02:44.707", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-04-09T17:15:12.703", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/argoproj/argo-cd/blob/a1afe44066fcd0a0ab90a02a23177164bbad42cf/util/diff/diff.go#L399"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/argoproj/argo-cd/issues/470"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/argoproj/argo-cd/pull/3088"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://www.soluble.ai/blog/argo-cves-2020"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/argoproj/argo-cd/blob/a1afe44066fcd0a0ab90a02a23177164bbad42cf/util/diff/diff.go#L399"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://github.com/argoproj/argo-cd/issues/470"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/argoproj/argo-cd/pull/3088"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://www.soluble.ai/blog/argo-cves-2020"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}