CVE-2026-42294 | argoproj argo-workflows up to 3.7.13/4.0.4 Request Body /api/v1/events/ allocation of resources (GHSA-jcc8-g2q4-9fxq)

A vulnerability labeled as problematic has been found in argoproj argo-workflows up to 3.7.13/4.0.4. Affected is an unknown function of the file /api/v1/events/ of the component Request Body Handler. Such manipulation leads to allocation of resources.

This vulnerability is uniquely identified as CVE-2026-42294. The attack can be launched remotely. No exploit exists.

The affected component should be upgraded.VulDB Recent EntriesRead More