{"uuid": "55238b9d-3978-4c60-8bda-26fc4c114d43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42880", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116536012920122031", "content": "\ud83d\udea8 CRITICAL: CVE-2026-42880 in Argo CD (v3.2.0 \u2013 3.2.10, 3.3.0 \u2013 3.3.8) allows attackers with read-only access to extract plaintext Kubernetes Secrets via the ServerSideDiff endpoint. Patch to 3.2.11/3.3.9+ now! https://radar.offseq.com/threat/cve-2026-42880-cwe-200-exposure-of-sensitive-infor-40029159 #OffSeq #ArgoCD #Kubernetes #CVE202642880", "creation_timestamp": "2026-05-08T00:00:45.515917Z"}