Red Hat · Openshift Gitops · CVE-2025-13888
**Name of the Vulnerable Software and Affected Versions**
OpenShift GitOps (affected versions not specified)
**Description**
A security issue exists in OpenShift GitOps where namespace administrators can create malicious ArgoCD Custom Resources (CRs). These CRs can deceive the system into granting the administrators elevated permissions in other namespaces, including those with privileged access. A successful exploit allows an attacker to create privileged workloads on master nodes, potentially resulting in root access to the entire cluster.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.