github.com/argoproj/.../session vulnerabilities

licenses detected

Direct Vulnerabilities

Known vulnerabilities in the github.com/argoproj/argo-cd/v2/util/session package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
M Improper Authorization	>=2.4.1 <2.8.16>=2.9.0 <2.9.12>=2.10.0 <2.10.7
M Brute Force	<2.8.13>=2.9.0-rc1 <2.9.9>=2.10.0-rc1 <2.10.4
H Missing Synchronization	<2.8.13>=2.9.0-rc1 <2.9.9>=2.10.0-rc1 <2.10.4
M Brute Force	<2.8.13>=2.9.0-rc1 <2.9.9>=2.10.0-rc1 <2.10.4
H Authorization Bypass	>=2.5.0-rc1 <2.5.8>=2.6.0-rc4 <2.6.0-rc5
C Improper Restriction of Security Token Assignment	<2.3.14>=2.4.0 <2.4.20>=2.5.0 <2.5.8>=2.6.0-rc1 <2.6.0-rc5
C Authentication Bypass	>=1.4.0 <2.1.15>=2.2.8 <2.2.9>=2.3.3 <2.3.4