Vulnerability Report: GO-2025-3996

  • CVE-2025-59537, GHSA-wp4p-9pxh-cgx2
  • Affects: github.com/argoproj/argo-cd, github.com/argoproj/argo-cd/v2, and 1 more
  • Published: Oct 23, 2025

argo-cd vulnerable unauthenticated DoS via malformed Gogs webhook payload in github.com/argoproj/argo-cd

For detailed information about this vulnerability, visit https://github.com/argoproj/argo-cd/security/advisories/GHSA-wp4p-9pxh-cgx2 or https://nvd.nist.gov/vuln/detail/CVE-2025-59537.

Affected Packages

  • Path
    Versions
    Symbols

Aliases

References

Feedback

See anything missing or incorrect? Suggest an edit to this report.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.