Vulnerability DatabaseCVE-2021-3557

CVE-2021-3557:
Argo CD vulnerability analysis and mitigation

A flaw was found in argocd. Any unprivileged user is able to deploy argocd in their namespace and with the created ServiceAccount argocd-argocd-server, the unprivileged user is able to read all resources of the cluster including all secrets which might enable privilege escalations. The highest threat from this vulnerability is to data confidentiality.

Source: NVD

Related Argo CD vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-55190	CRITICAL	9.9	Argo CD	cpe:2.3:a:linuxfoundation:argo-cd	No	Yes	Sep 04, 2025
CVE-2025-59538	HIGH	7.5	Argo CD	cpe:2.3:a:linuxfoundation:argo-cd	No	Yes	Oct 01, 2025
CVE-2025-59537	HIGH	7.5	Argo CD	argocd-fips-3.0	No	Yes	Oct 01, 2025
CVE-2025-59531	HIGH	7.5	Argo CD	argocd-3.1	No	Yes	Oct 01, 2025
CVE-2025-55191	MEDIUM	5.3	Argo CD	cpe:2.3:a:argoproj:argo_cd	No	Yes	Sep 30, 2025

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

A threat intelligence database

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."

David EstlickCISO

"Wiz provides a single pane of glass to see what is going on in our cloud environments."

Adam FletcherChief Security Officer

"We know that if Wiz identifies something as critical, it actually is."

Greg PoniatowskiHead of Threat and Vulnerability Management

Get a demo

CVE-2021-3557: Argo CD vulnerability analysis and mitigation