CVE-2026-62185

Summary

Argo CD Helm Chart before 10.0.0 fails to install network policies by default, allowing any pod on a cluster to access repo-server and other Argo APIs. Attackers can exploit this unrestricted network access through combined attacks to achieve cluster compromise and remote code execution.

Affected Software

VendorProductVersion RangeStatus
argoprojargo-helm0 < 10.0.0affected
argoprojargo-helm10.0.0unaffected

Weaknesses

  • CWE-1188: Initialization of a Resource with an Insecure Default

References