CVE-2022-1025 - AskarLabs CVE Database

CVE-2022-1025

Vendor N/A

Product ArgoCD

Weakness CWE-284

Published July 12, 2022

Last update August 2, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

All unpatched versions of Argo CD starting with v1.0.0 are vulnerable to an improper access control bug, allowing a malicious user to potentially escalate their privileges to admin-level.

Key dates

02Disclosure timeline

July 12, 2022 CVE published

August 2, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-1025 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/284.html

Related vulnerabilities

04Related CVE

CVE-2025-46816 goshs route not protected, allows command execution CVE-2023-37478 pnpm incorrectly parses tar archives relative to specification CVE-2019-1759 Cisco IOS XE Software Gigabit Ethernet Management Interface Access Control List Bypass Vulnerability CVE-2023-31341 CVE-2024-20373 Cisco IOS and Cisco IOS XE SNMP Extended ACL Bypass Vulnerability