Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 18+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
High
Argo Workflows Webhook DoS Vulnerability Fix and POC
github.com · 2026-05-09
argo-workflows
Read more
Medium
CVE-2026-42294: Argo Workflows Webhook Interceptor Unauthenticated Memory Exhaustion DoS
CVE-2026-42294 · github.com · 2026-05-09
Argo Workflows < 3.7.14 · Argo Workflows >= 4.0.0, < 4.0.5
Read more
High
Argo Workflows Missing Authz Check in Sync ConfigMap Provider CVE-2024-XXXX
github.com · 2026-05-09
Argo Workflows >=4.0.0, <4.0.5
Read more
High
Argo Workflows ConfigMap Sync Privilege Escalation Fix: SelfSubjectAccessReview Implementation
github.com · 2026-05-09
Argo Workflows
Read more
Low
Argo Workflows CVE-2026-42183: SSO RBAC Delegation Nil Pointer Dereference DoS
CVE-2026-42183 · github.com · 2026-05-09
github.com/argoproj/argo-workflows/v4 > 4.0.0, <= 4.0.4
Read more
High
Argo Workflows SSO Delegation nil Pointer Panic Vulnerability
github.com · 2026-05-09
argoproj/argo-workflows
Read more
Premium intel
High
Argo Workflows CVE-2026-31892 Incomplete Fix: Strict/Secure Mode Bypass via hostNetwork
CVE-2026-31892 · github.com · 2026-05-09
Argo Workflows <3.7.14 · Argo Workflows >=4.0.0,<4.0.5
Read more
Premium intel
High
Argo Workflows Template Ref Bypasses podSpecPatch Security Restrictions in Strict/Secure Mode
github.com · 2026-05-09
argo-workflows
Read more
High
Argo Workflows Credential Exposure via Log Leakage (CVE-2025-4235)
CVE-2025-4235 · github.com · 2026-05-09
Argo Workflows >=4.0.0, < 4.0.5
Read more
Premium intel
Critical
ArgoCD ServerSideDiff Secret Extraction Vulnerability (CVSS 9.6)
github.com · 2026-05-02
argoproj/argo-cd v3.2.0 - v3.3.8
Read more
High
Argo Workflows Controller Crash via Unchecked Annotation Parsing (DoS)
github.com · 2026-04-24
Argo Workflows >=4.0.0, <4.0.4 · Argo Workflows >=3.7.0, <3.7.13 …
Read more
Premium intel
CVSS 8.1
Argo Workflows ZipSlip Vulnerability (CVE-2021-35565) Analysis and PoC
github.com · 2025-10-15

### Critical Vulnerability Information #### Vulnerability Overview - **CVE ID**: CVE-2021-35565 - **CVSS Score**: 9.1/10 - **Severity**: High - **Affected Versions**: =3.7.0, <3.7.3 - **Fixed Versions…

Read more
Premium intel
CVSS 8.1
Fix Path Traversal and Symlink Vulnerability in Go Workflow Executor
github.com · 2025-10-15

From this webpage screenshot, the following key information about the vulnerability can be obtained: - **Submission ID**: 5659ad9 - **Submitter**: Joibel - **Submission Time**: 5 hours ago - **Branch*…

Read more
CVSS 6.5
Argo CD DoS via Race Condition in Credentials Updates
github.com · 2025-10-01

### Critical Vulnerability Information #### Vulnerability Title DoS via credentials updates triggering a race condition that crashes the Argo CD server #### Severity - Rating: Medium (6.5/10) - CVSS v…

Read more
Premium intel
CVSS 10.0
Argo CD CVE-2025-55190: Project API Token Exposes Repository Credentials
github.com · 2025-09-05

### Critical Vulnerability Information #### Vulnerability Overview - **Title**: Project API Token Exposes Repository Credentials - **Severity**: Critical (CVSS v3.1: 10.0/10) - **CVE ID**: CVE-2025-55…

Read more
CVSS 8.3
Argo Workflows Helm Chart Excessive Privileges Leading to RCE
github.com · 2024-11-24

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Vulnerability Name**: Workflows: Excessive Privileges in Work…

Read more
CVSS 8.3
Argo Workflows: Fix excessive RBAC permissions in controller
github.com · 2024-11-24

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Vulnerability Description**: - **Title**: `fix(argo-workflows): Remove excessive wf controller RBAC perm…

Read more
CVSS 5.7
Argo Workflows Race Condition DoS Vulnerability and Exploit PoC
github.com · 2024-10-29

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Vulnerability Type**: Denial of Service (DoS) via malicious d…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.