The unpatched vulnerability could give attackers a pathway from a compromised pod to broader control over Kubernetes deployments.

Synacktiv says attackers who reach Argo CD's internal gRPC port can run commands, with network policies the main defense.

The unpatched vulnerability could give attackers a pathway from a compromised pod to broader control over Kubernetes deployments.