THREATOPS
THREAT OPSThreat News › Caught in the Octopus Trap: Unauthenticated RCE in Argo CD with CodeQL

Caught in the Octopus Trap: Unauthenticated RCE in Argo CD with CodeQL

lowsynacktiv

Synacktiv has discovered an unauthenticated arbitrary code execution vulnerability in ArgoCD's repo-server component, potentially allowing full cluster compromise. This article explains how the vulnerability was identified using CodeQL, details the exploitation process to gain control over the underlying Kubernetes cluster, and introduces a tool for automating the attack.

Original source: https://www.synacktiv.com/en/publications/caught-in-the-octopus-trap-unauthenticated-rce-in-argo-cd-with-codeql.html