helm

Top products

The 15 most recently published vulnerabilities affecting helm.

• CVE-2026-35206Helm Chart extraction output directory collapse via `Chart.yaml` name dot-segment4.4Apr 9, 2026
• CVE-2026-35205Helm's plugin verification fails open when .prov is missing, allowing unsigned plugin install7.8Apr 9, 2026
• CVE-2026-35204Helm has a path traversal in plugin metadata version enables arbitrary file write outside Helm plugin directory8.6Apr 9, 2026
• CVE-2025-55198Helm May Panic Due To Incorrect YAML Content6.5Aug 13, 2025
• CVE-2025-55199Helm Charts with Specific JSON Schema Values Can Cause Memory Exhaustion6.5Aug 13, 2025
• CVE-2025-53547Helm Chart Dependency Updating With Malicious Chart.yaml Content And Symlink Can Lead To Code Execution8.5Jul 8, 2025
• CVE-2025-32386Helm Allows A Specially Crafted Chart Archive To Cause Out Of Memory Termination6.5Apr 9, 2025
• CVE-2025-32387Helm Allows A Specially Crafted JSON Schema To Cause A Stack Overflow6.5Apr 9, 2025
• CVE-2019-25210An issue was discovered in Cloud Native Computing Foundation (CNCF) Helm through 3.13.3. It displays values of secrets when the --dry-run flag is used. This is a security concern in some use cases,...6.5Mar 3, 2024
• CVE-2024-26147Helm's Missing YAML Content Leads To Panic7.5Feb 21, 2024
• CVE-2024-25620Dependency management path traversal in helm6.4Feb 14, 2024
• CVE-2023-25165getHostByName Function Information Disclosure4.3Feb 8, 2023
• CVE-2022-23526Helm contains Denial of service through schema file5.3Dec 15, 2022
• CVE-2022-23525Helm vulnerable to Denial of service via NULL Pointer Dereference5.3Dec 15, 2022
• CVE-2022-23524Helm vulnerable to Denial of service through string value parsing5.3Dec 15, 2022