{"vulnerability": "CVE-2023-40029", "sightings": [{"uuid": "de3cc05c-ca50-4625-9e2a-c84d6caa2424", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40029", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3ljitws6krt2g", "content": "", "creation_timestamp": "2025-03-03T21:02:34.256175Z"}, {"uuid": "2f430c6f-d179-4ad6-a715-93c1a6785871", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40029", "type": "seen", "source": "https://t.me/cibsecurity/70118", "content": "\u203c CVE-2023-40029 \u203c\n\nArgo CD is a declarative continuous deployment for Kubernetes. Argo CD Cluster secrets might be managed declaratively using Argo CD / kubectl apply. As a result, the full secret body is stored in`kubectl.kubernetes.io/last-applied-configuration` annotation. pull request #7139 introduced the ability to manage cluster labels and annotations. Since clusters are stored as secrets it also exposes the `kubectl.kubernetes.io/last-applied-configuration` annotation which includes full secret body. In order to view the cluster annotations via the Argo CD API, the user must have `clusters, get` RBAC access. **Note:** In many cases, cluster secrets do not contain any actually-secret information. But sometimes, as in bearer-token auth, the contents might be very sensitive. The bug has been patched in versions 2.8.3, 2.7.14, and 2.6.15. Users are advised to upgrade. Users unable to upgrade should update/deploy cluster secret with `server-side-apply` flag which does not use or rely on `kubectl.kubernetes.io/last-applied-configuration` annotation. Note: annotation for existing secrets will require manual removal.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-08T02:19:34.000000Z"}, {"uuid": "40dd872f-c664-4958-aa5c-01da5a822681", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40029", "type": "published-proof-of-concept", "source": "Telegram/F-fOrjgp3Mr3VOE2BBhgFMlAqu7uJ17avQ8Wad5LrkBGLSw", "content": "", "creation_timestamp": "2025-01-25T10:00:05.000000Z"}]}