CVE-2026-43824 | argoproj Argo CD up to 3.2.10/3.3.8 ServerSideDiff improper removal of sensitive information before storage or transfer (GHSA-3v3m-wc6v-x4x3 / EUVD-2026-26726)

Inserito da Angelo Barbosa | Mag 2, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in argoproj Argo CD up to 3.2.10/3.3.8. The affected element is an unknown function of the component ServerSideDiff. Performing a manipulation results in improper removal of sensitive information before storage or transfer.

This vulnerability is known as CVE-2026-43824. Remote exploitation of the attack is possible. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-43824 | argoproj Argo CD up to 3.2.10/3.3.8 ServerSideDiff improper removal of sensitive information before storage or transfer (GHSA-3v3m-wc6v-x4x3 / EUVD-2026-26726)

Post correlati

CVE-2025-23895 | Dan Cameron Add RSS Plugin up to 1.5 on WordPress cross-site request forgery

CVE-2024-23895 | Cups Easy 1.0 URL locationcreate.php locationid cross site scripting

CVE-2024-48847 | ABB ASPECT-Enterprise/NEXUS/MATRIX up to 3.08.01 weak hash

CVE-2024-5566 | GitHub Enterprise Server up to 3.9.16/3.10.13/3.11.11/3.12.5/3.13.0 Personal Access Token privileges management