CVE-2025-32445: 
Chainguard vulnerability analysis and mitigation

A critical security vulnerability (CVE-2025-32445) was discovered in Argo Events, an event-driven workflow automation framework for Kubernetes. The vulnerability allows users with permission to create/modify EventSource and Sensor custom resources to gain privileged access to the host system and cluster, even without having direct administrative privileges. The vulnerability was discovered in April 2025 and has been fixed in version v1.9.6 (GitHub Advisory).

The vulnerability stems from how EventSource and Sensor custom resources (CRs) can be customized with spec.template and spec.template.container specifications. These CRs allow users to specify various container properties including command, args, securityContext, and volumeMount, which are then applied to the EventSource or Sensor pod. The vulnerability has received a CVSS v3.1 base score of 9.9 (Critical) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H (NVD).

The vulnerability's impact is particularly severe in multi-tenant Kubernetes clusters. Successful exploitation can lead to broken tenant isolation, unauthorized host/cluster access by non-admin users, access to other tenants' data, and bypassing of security models including RBAC restrictions and Pod Security Policies/Standards. The vulnerability ultimately allows for host system compromise (Security Online).

The Argo team has released version v1.9.6 which patches this vulnerability by limiting the allowed properties under spec.template.container. Users of Argo Events are strongly advised to upgrade to this version immediately to mitigate the risk (GitHub Advisory).