CVE-2026-42183

EUVD-2026-28891

09.05.2026, 04:16

Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. From version 4.0.0 to before version 4.0.5, a nil pointer dereference in server/auth/gatekeeper.go rbacAuthorization() causes a panic (denial of service) for SSO users whose claims match a namespace-level RBAC rule but not an SSO-namespace rule, when SSO_DELEGATE_RBAC_TO_NAMESPACE=true. This issue has been patched in version 4.0.5.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.5 MEDIUM	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 29%

Affected Products (NVD)

Vendor	Product	Version
argoproj	argo_workflows	4.0.0 ≤ 𝑥 < 4.0.5

𝑥

= Vulnerable software versions

Known Exploits!

https://github.com/argoproj/argo-workflows/security/advisories/GHSA-p4gq-3vxj-f4jq

Common Weakness Enumeration

CWE-476 - NULL Pointer Dereference
A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

References

https://github.com/argoproj/argo-workflows/commit/c4cc17d0c034fa9a9cc01ef1af6c8016c93071d4

https://github.com/argoproj/argo-workflows/releases/tag/v4.0.5

https://github.com/argoproj/argo-workflows/security/advisories/GHSA-p4gq-3vxj-f4jq