VDB
CVE-2024-53862
CVE-2024-53862
PUBLISHED
Argo Workflows Allows Access to Archived Workflows with Fake Token in `client` mode
EPSS 0.32% · 55.5th percentile
Risk Scores
EPSS Score
0.32%
55.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | argo-workflows | 3.5.7, 3.5.7, 3.5.7 |
| Bitnami | argo-workflows | 3.5.7 |
Exploit Intelligence
- https://github.com/argoproj/argo-workflows/security/advisories/GHSA-h36c-m3rf-34h9 (nist-nvd)
- CIRCL seen: CVE-2024-53862 (circl-sighting)
- CIRCL seen: CVE-2024-53862 (circl-sighting)
- https://github.com/argoproj/argo-workflows/pull/13021/files#diff-a5b255abaceddc9cc20bf6da6ae92c3a5d3605d94366af503ed754c079a1171aL668-R715 (circl)
Timeline
- Jan 20, 1970 Fix PR Merged
- Jan 21, 1970 Security Advisory
- Dec 2, 2024 CVE Published
- Dec 2, 2024 PoC Published
- Dec 3, 2024 EPSS Score
- Dec 20, 2024 EPSS Score
- Jan 6, 2025 EPSS Score
- Jan 23, 2025 EPSS Score
- Feb 9, 2025 EPSS Score
- Feb 26, 2025 EPSS Score
- Mar 15, 2025 EPSS Score
- Mar 19, 2025 Coalition ESS Score