Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

helm — Vulnerabilities & Security Advisories 25

All 25 CVE vulnerabilities found in helm, with AI-generated Chinese analysis, references, and POCs.

Vendor: helm

CVE IDTitleCVSSSeverityPaused
CVE-2026-35206 Helm Chart extraction output directory collapse via `Chart.yaml` name dot-segment CWE-22 3.5AILowAI2026-04-09
CVE-2026-35205 Helm's plugin verification fails open when .prov is missing, allowing unsigned plugin install CWE-636 8.1AIHighAI2026-04-09
CVE-2026-35204 Helm has a path traversal in plugin metadata version enables arbitrary file write outside Helm plugin directory CWE-22 5.7AIMediumAI2026-04-09
CVE-2026-25750 LangSmith Studio has URL Parameter Injection Vulnerability that Enables Token Theft via Malicious baseUrl CWE-74 8.9AIHighAI2026-03-04
CVE-2025-55198 Helm May Panic Due To Incorrect YAML Content CWE-908 6.5 Medium2025-08-13
CVE-2025-55199 Helm Charts with Specific JSON Schema Values Can Cause Memory Exhaustion CWE-770 6.5 Medium2025-08-13
CVE-2025-53547 Helm Chart Dependency Updating With Malicious Chart.yaml Content And Symlink Can Lead To Code Execution CWE-94 8.5 High2025-07-08
CVE-2025-32386 Helm Allows A Specially Crafted Chart Archive To Cause Out Of Memory Termination CWE-789 6.5 Medium2025-04-09
CVE-2025-32387 Helm Allows A Specially Crafted JSON Schema To Cause A Stack Overflow CWE-121 6.5 Medium2025-04-09
CVE-2024-26147 Helm's Missing YAML Content Leads To Panic CWE-457 7.5 High2024-02-21
CVE-2024-25620 Dependency management path traversal in helm CWE-22 6.4 Medium2024-02-14
CVE-2023-25165 getHostByName Function Information Disclosure CWE-200 4.3 Medium2023-02-08
CVE-2022-23526 Helm contains Denial of service through schema file CWE-476 5.3 Medium2022-12-15
CVE-2022-23525 Helm vulnerable to Denial of service via NULL Pointer Dereference CWE-476 5.3 Medium2022-12-15
CVE-2022-23524 Helm vulnerable to Denial of service through string value parsing CWE-400 5.3 Medium2022-12-15
CVE-2022-36055 Denial of service in Helm CWE-400 6.5 Medium2022-09-01
CVE-2021-32690 Repository credentials passed to alternate domain CWE-200 6.8 Medium2021-06-16
CVE-2021-21303 Injection attack in Helm CWE-74 5.9 Medium2021-02-05
CVE-2020-15187 Duplicate plugin entries in Helm CWE-694 3.0 Low2020-09-17
CVE-2020-15186 Improper sanitization of plugin names in Helm CWE-20 3.4 Low2020-09-17
CVE-2020-15185 Duplicated chart entries in Helm CWE-694 2.2 Low2020-09-17
CVE-2020-15184 Aliases are never checked in Helm CWE-20 3.7 Low2020-09-17
CVE-2020-4053 Path Traversal in Helm Plugin Archive CWE-22 3.7 Low2020-06-16
CVE-2020-11013 lookup Function Information Discolosure in Helm CWE-200 8.5 High2020-04-24
CVE-2019-1010275 helm 信任管理问题漏洞 CWE-295 9.1 -2019-07-17

All 25 known CVE vulnerabilities affecting helm with full Chinese analysis, references, and POCs where available.