Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Helm May Panic Due To Incorrect YAML Content
Vulnerability Description
Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, when parsing Chart.yaml and index.yaml files, an improper validation of type error can lead to a panic. This issue has been resolved in Helm 3.18.5. A workaround involves ensuring YAML files are formatted as Helm expects prior to processing them with Helm.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Vulnerability Type
对未经初始化资源的使用
Vulnerability Title
Helm 安全漏洞
Vulnerability Description
Helm是CNCF基金会的一款Kubernetes包管理器。 Helm 3.18.5之前版本存在安全漏洞,该漏洞源于类型错误验证不当,可能导致程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A