CRITICAL: CVE-2026-42880 in Argo CD (v3.2.0 – 3.2.10, 3.3.0 – 3.3.8) allows attackers with read-only access to extract plaintext Kubernetes Secrets via the ServerSideDiff endpoint. Patch to 3.2.11/3.3.9+ now! https://radar.offseq.com/threat/cve-2026-42880-cwe-200-exposure-of-sensitive-infor-40029159 #OffSeq #ArgoCD #Kubernetes #CVE202642880

]]>https://board.circlewithadot.net/topic/88b9c954-928b-4b41-b489-c0d474c5a635/critical-cve-2026-42880-in-argo-cd-v3.2.0-3.2.10-3.3.0-3.3.8-allows-attackers-with-read-only-access-to-extract-plaintext-kubernetes-secrets-via-the-serversidediff-endpoint.RSS for NodeFri, 15 May 2026 06:59:20 GMTFri, 08 May 2026 00:00:39 GMT60