VDB
CVE-2023-23947
CVE-2023-23947
PUBLISHED
CVSS 9.100000381469727 CRITICAL
Users with any cluster secret update access may update out-of-bounds cluster secrets
EPSS 0.35% · 58.1th percentile
Risk Scores
CVSS 3.1
9.100000381469727
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
EPSS Score
0.35%
58.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| github.com | argoproj/argo-cd | 2.4.0, 2.5.0, 2.3.0 |
| argoproj | argo-cd | >= 2.3.0-rc1, < 2.3.17, >= 2.6.0, < 2.6.2, * |
| argoproj | argo_cd | 2.3.0, 2.4.0, 2.5.0 |
Exploit Intelligence
Timeline
- Feb 16, 2023 CVE Published
- Feb 17, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 29, 2023 EPSS Score
- May 7, 2023 EPSS Score
- Jun 16, 2023 EPSS Score
- Sep 3, 2023 EPSS Score
- Oct 13, 2023 EPSS Score
- Nov 21, 2023 EPSS Score
- Dec 31, 2023 EPSS Score
- Feb 8, 2024 EPSS Score
- Mar 19, 2024 EPSS Score