CVE-2025-32445— Users can gain privileged access to the host system and cluster with EventSource and Sensor CR
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-32445
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Users can gain privileged access to the host system and cluster with EventSource and Sensor CR
Source: NVD (National Vulnerability Database)
Vulnerability Description
Argo Events is an event-driven workflow automation framework for Kubernetes. A user with permission to create/modify EventSource and Sensor custom resources can gain privileged access to the host system and cluster, even without having direct administrative privileges. The EventSource and Sensor CRs allow the corresponding orchestrated pod to be customized with spec.template and spec.template.container (with type k8s.io/api/core/v1.Container), thus, any specification under container such as command, args, securityContext , volumeMount can be specified, and applied to the EventSource or Sensor pod. With these, a user would be able to gain privileged access to the cluster host, if he/she specified the EventSource/Sensor CR with some particular properties under template. This vulnerability is fixed in v1.9.6.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
带着不必要的权限执行
Source: NVD (National Vulnerability Database)
Vulnerability Title
Argo Events 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Argo Events是Argo Project开源的一个用于 Kubernetes 的事件驱动的工作流自动化框架。 Argo Events v1.9.6之前版本存在安全漏洞,该漏洞源于具有创建或修改EventSource和Sensor权限的用户可以获得主机系统和集群的特权访问。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| argoproj | argo-events | < 1.9.6 | - |
II. Public POCs for CVE-2025-32445
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-32445
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same vendor: argoproj
- CVE-2026-42296
Argo Workflows has incomplete fix for CVE-2026-31892: hostNe - CVE-2026-42295
Argo Workflows: Exposure of artifact repository credentials - CVE-2026-42294
Argo Workflows: Unauthenticated Memory Exhaustion (DoS) in W - CVE-2026-42183
Argo Workflows: SSO RBAC Delegation Nil Pointer Dereference - CVE-2026-42297
Argo Workflows Is Missing Authorization in Sync ConfigMap Pr
Same weakness: CWE-250
- CVE-2026-42088
OpenC3 COSMOS: Administrative Actions via the Script Runner - CVE-2026-40550
Privilege Escalation in mpGabinet - CVE-2026-25908
Dell Alienware Command Center 安全漏洞 - CVE-2026-4667
HP System Optimizer - Escalation of Privilege - CVE-2026-33793
Junos OS and Junos OS Evolved: When an unsigned Python op sc
V. Comments for CVE-2025-32445
No comments yet