CVE-2024-40634 | argoproj argo-cd up to 2.9.19/2.10.14/2.11.5 /api/webhook resource consumption (GHSA-jmvp-698c-4x3w)

Posted by Angelo Barbosa | Jul 22, 2024 | CVE

A vulnerability was found in argoproj argo-cd up to 2.9.19/2.10.14/2.11.5 and classified as critical. Affected by this issue is some unknown functionality of the file /api/webhook. The manipulation leads to resource consumption.

This vulnerability is handled as CVE-2024-40634. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-40634 | argoproj argo-cd up to 2.9.19/2.10.14/2.11.5 /api/webhook resource consumption (GHSA-jmvp-698c-4x3w)

Related Posts

CVE-2024-30050 | Microsoft Windows up to Server 2022 23H2 Mark of the Web unknown vulnerability

CVE-2024-6339 | Phlox Pro Plugin up to 5.16.4 on WordPress Search Parameter cross site scripting

CVE-2012-10018 | sekler Mapplic Plugin/Mapplic Lite Plugin on WordPress SVG File server-side request forgery (ID 161919 / ID 2503447)

CVE-2024-7642 | SourceCodester Kortex Lite Advocate Office Management System 1.0 activate_act.php id sql injection