Vulnerabilities (CVE)

Filtered by CWE-1108
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-47827 1 Argo Workflows Project 1 Argo Workflows 2024-11-05 N/A 4.8 MEDIUM
Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. Due to a race condition in a global variable in 3.6.0-rc1, the argo workflows controller can be made to crash on-command by any user with access to execute a workflow. This vulnerability is fixed in 3.6.0-rc2.
CVE-2022-2642 2024-02-04 N/A 7.5 HIGH
Horner Automation’s RCC 972 firmware version 15.40 contains global variables. This could allow an attacker to read out sensitive values and variable keys from the device.