VDB
GHSA-594f-3595-c47v
GHSA-594f-3595-c47v
PUBLISHED
CVSS 4.800000190734863 MEDIUM
Terraform Provider for ArgoCD has possible exposure to GO-2026-4337 / CVE-2025-68121
Risk Scores
CVSS v3.1
4.800000190734863
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| github.com | argoproj-labs/terraform-provider-argocd | 0, 0, 0 |
Timeline
- Mar 18, 2026 CVE Published
- Mar 21, 2026 Security Advisory
References
- https://github.com/argoproj-labs/terraform-provider-argocd/security/advisories/GHSA-594f-3595-c47v url
- https://github.com/argoproj-labs/terraform-provider-argocd package
- https://github.com/argoproj-labs/terraform-provider-argocd/commit/b3364f3f32e70f1563c5f3162d370db704430294 url
- https://github.com/advisories/GHSA-594f-3595-c47v advisory
- https://go.dev/issue/77217 url
- https://nvd.nist.gov/vuln/detail/CVE-2025-68121 advisory
- https://pkg.go.dev/vuln/GO-2026-4337 url
- https://go.dev/cl/737700 url
- https://groups.google.com/g/golang-announce/c/K09ubi9FQFk url