CVE-2025-66626

CVE-2025-66626 is a vulnerability in Argo Workflows, an open-source container-native workflow engine for orchestrating parallel jobs on Kubernetes. It affects versions 3.6.13 and below, as well as versions 3.7.0 through 3.7.4, due to unsafe untar code that mishandles symbolic links in archives. Specifically, the computation of a symbolic link's target and the subsequent security check are flawed, enabling file overwrites outside intended directories. The issue carries a CVSS v3.1 base score of 8.1 (AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H) and maps to CWEs-23 (Relative Path Traversal), CWE-78 (OS Command Injection), and CWE-59 (Symbolic Link Following).

An attacker requires low privileges (PR:L), such as those of an authenticated Kubernetes user able to submit workflows, and network access to the Argo server. By supplying a malicious archive containing symbolic links during workflow execution, they can overwrite the file /var/run/argo/argoexec with a custom script. This script executes automatically at the pod's startup, granting high-impact integrity and availability disruption, such as arbitrary code execution within the pod's context.

GitHub Security Advisories (GHSA-p84v-gxvw-73pf and GHSA-xrqc-7xgx-c9vh) confirm the vulnerability and note that the patch for the related CVE-2025-62156 fails against symbolic link attacks. Mitigation requires upgrading to Argo Workflows versions 3.6.14 or 3.7.5, where the fix addresses the flawed link target computation in executor.go (lines 1034-1037) via commit 6b92af23f35aed4d4de8b04adcaf19d68f006de1.