13Mar
CVE-2024-28175 | argocd up to 2.8.11/2.9.0/2.9.7/2.10.0/2.10.2 URL Protocol cross site scripting (GHSA-jwv5-8mqv-g387)
A vulnerability, which was classified as problematic, was found in argocd up to 2.8.11/2.9.0/2.9.7/2.10.0/2.10.2. Affected is an unknown function of the component URL Protocol Handler. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2024-28175. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.