Seite wählen

03.07.2026

Argo CD flaw shows why GitOps infrastructure should be treated as tier zero

CSO Online 02.07.2026 10:57
A newly disclosed vulnerability in Argo CD is drawing attention to the security risks of GitOps platforms, with researchers warning that the flaw could allow attackers who gain a foothold inside a Kubernetes cluster to execute code and manipulate application deployments.
Security firm Synacktiv said in a report that the flaw affects Argo CD’s repo-server component, which fetches content from Git repositories and generates Kubernetes manifests used to deploy resources in a cluster. Argo CD is one of the most popular Kubernetes tools and is based on the GitOps paradigm.

Schwachstellen in Synology MailPlus Server lassen Angreifer passieren

Heise Security 02.07.2026 08:29
Netzwerkspeicher von Synology mit MailPlus Server sind attackierbar. Ein Sicherheitspatch schafft Abhilfe.

Lücken in Adobe ColdFusion und Campaign Classic: Patchdayzyklus verdoppelt

Heise Security 02.07.2026 07:43
Wichtige Sicherheitsupdates schließen kritische Schadcode-Lücken in Adobe ColdFusion und Campaign Classic. Ab sofort sollen Patches häufiger erscheinen.

SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation

The Hacker News 02.07.2026 05:46
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a high-severity flaw impacting Microsoft SharePoint Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.

The vulnerability, tracked as CVE-2026-45659 (CVSS score: 8.8), is a case of remote code execution arising from the deserialization of untrusted data. The issue