A security flaw in Argo CD, the popular open-source GitOps tool for Kubernetes, has been targeted at the DevOps and cloud-native communities. Tracked as CVE-2025-55190, the vulnerability has been rated critical with a CVSS score of 9.8 out of 10, as it allows attackers to retrieve sensitive repository credentials, including usernames and passwords, through a project-level API token.
First seen on thecyberexpress.com
Jump to article: thecyberexpress.com/critical-argo-cd-api-flaw-cve-2025-55190/
