Argo Workflows Stored Cross-Site Scripting Vulnerability in Artifact Directory Listing

A stored cross-site scripting vulnerability has been identified in Argo Workflows versions prior to 3.6.17 and 3.7.0 through 3.7.7. This issue allows workflow authors to execute arbitrary JavaScript in the context of another user's browser under the Argo Server origin. The vulnerability arises because the artifact directory listing response renders object names directly into HTML without proper escaping, creating an opportunity for script injection. Exploitation of this vulnerability enables the execution of API actions with the victim's privileges.

Impact

Exploitation allows for the execution of arbitrary JavaScript in the victim's browser, with access to the Argo Server API using the victim's privileges. This could include reading, creating, or deleting workflows, depending on the victim's permissions.

Reproduction

To reproduce this vulnerability, create a workflow that writes files into an output artifact directory, including a file name that contains injected JavaScript, such as one with an image tag using an XHR payload. Once the workflow is executed, the injected script will run when the artifact directory listing is accessed.

Remediation

Users can upgrade to Argo Workflows versions 3.6.17 or 3.7.8, where this vulnerability has been patched.