AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

GHSA-p4gq-3vxj-f4jq: Argo Affected by SSO RBAC Delegation Nil Pointer Dereference DoS (gatekeeper.go)

lowvulnerability

security

Source: GitHub Advisory DatabaseMay 4, 2026CVE-2026-42183

Summary

A nil pointer dereference (accessing data at a null memory address) in Argo Workflows v4.0.4 causes the server to crash with an HTTP 500 error for SSO (single sign-on) users when RBAC delegation (role-based access control rules delegated to namespaces) is enabled. This happens specifically when a user's SSO claims match a namespace-level RBAC rule but not an SSO-namespace rule, causing a permanent denial of service (inability to use the system) for affected users.

Solution / Mitigation

The source suggests adding a nil check: `if loginAccount == nil || precedence(namespaceAccount) > precedence(loginAccount)` at line 304 in gatekeeper.go to prevent the nil pointer dereference.

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 0.0%

Patch Available

Yes

Disclosure Date

May 4, 2026

Classification

Attack SophisticationModerate

Impact (CIA+S)

availability

Affected Packages

github.com/argoproj/argo-workflows/v4@>= 4.0.0, <= 4.0.4 (fixed: 4.0.5)

Monthly digest — independent AI security research

Original source: https://github.com/advisories/GHSA-p4gq-3vxj-f4jq

First tracked: May 4, 2026 at 08:00 PM

Classified by LLM (prompt v3) · confidence: 95%