What is CVE-2025-47933 — Cross-Site Scripting (XSS) in Argo CD?

CVE-2025-47933 is a CRITICAL XSS vulnerability in Argo CD's repositories page, allowing attackers to inject malicious scripts and potentially compromise user sessions and data.

Am I affected by CVE-2025-47933 in Argo CD?

If you are running Argo CD versions prior to 3.0.4, you are vulnerable to this XSS attack. Immediately assess your environment and apply the necessary patch.

How do I fix CVE-2025-47933 in Argo CD?

The recommended fix is to upgrade Argo CD to version 3.0.4 or later. If immediate upgrade is not possible, implement input validation and WAF rules as temporary mitigations.

Is CVE-2025-47933 being actively exploited?

As of the current date, there is no confirmed evidence of active exploitation in the wild, but the vulnerability's severity warrants immediate attention and remediation.

Where can I find the official Argo CD advisory for CVE-2025-47933?

Refer to the official Argo CD security advisory for detailed information and updates regarding CVE-2025-47933: [https://argoproj.github.io/cd/security/](https://argoproj.github.io/cd/security/)

CVE-2025-47933 — Vulnerability Details

NEXTGUARD

Escanear grátis

CVE-2025-47933 — Vulnerability Details | NextGuard

Passos de Detecçãotraduzindo…

• go / application: Monitor Argo CD application logs for unusual JavaScript execution patterns. Look for POST requests to the repositories page with suspicious parameters.

Get-WinEvent -LogName Application -Filter "EventID=1000 -Message*Argo CD*Repositories Page*" | Where-Object {$_.Message -match "<script"}

• generic web: Use curl to test the repositories page with various XSS payloads. Examine the response for signs of script execution.

echo '<script>alert("XSS")</script>' | curl -X POST -d @- https://<argo-cd-url>/repositories

• generic web: Check Argo CD's access logs for requests originating from unusual IP addresses or user agents, potentially indicating reconnaissance or exploitation attempts.

Argo CD permite cross-site scripting na página de repositórios em github.com/argoproj/argo-cd

Impacto e Cenários de Ataquetraduzindo…

Contexto de Exploraçãotraduzindo…

Quem Está em Riscotraduzindo…

Passos de Detecçãotraduzindo…

Linha do Tempo do Ataque

Inteligência de Ameaças

Software Afetado

Classificação de Fraqueza (CWE)

Linha do tempo

Mitigação e Soluções Alternativastraduzindo…

Como corrigir

Boletim de Segurança CVE

Perguntas frequentestraduzindo…

What is CVE-2025-47933 — Cross-Site Scripting (XSS) in Argo CD?

Am I affected by CVE-2025-47933 in Argo CD?

How do I fix CVE-2025-47933 in Argo CD?

Is CVE-2025-47933 being actively exploited?

Where can I find the official Argo CD advisory for CVE-2025-47933?

Seu projeto está afetado?

Detecte esta CVE no seu projeto