Argo_events_project Argo_events
2 CVEs affecting Argo_events_project Argo_events. Latest disclosed: 2022-06-17. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-25856 | High | 7.5 | 2022-06-17 | The package github.com/argoproj/argo-events/sensors/artifacts before 1.7.1 are vulnerable to Directory Traversal in the (g *GitArtifactReader).Read() API in gi… |
CVE-2022-31054 | High | 7.5 | 2022-06-13 | Argo Events is an event-driven workflow automation framework for Kubernetes. Prior to version 1.7.1, several `HandleRoute` endpoints make use of the deprecated… |