Argo Cd · Argo Cd · CVE-2021-23135
**Name of the Vulnerable Software and Affected Versions**
Argo CD versions 1.8.0 through 1.8.6
Argo CD versions 1.7.0 through 1.7.13
**Description**
The issue allows an attacker to cause leaked secret data into web UI error messages and logs due to exposure of system data to an unauthorized control sphere vulnerability in the web UI of Argo CD.
**Recommendations**
For Argo CD versions 1.8.0 through 1.8.6, update to version 1.8.7 or later.
For Argo CD versions 1.7.0 through 1.7.13, update to version 1.7.14 or later.