Vulnerability-Lookup

RHSA-2026:26441

Vulnerability from csaf_redhat - Published: 2026-06-16 20:29 - Updated: 2026-06-16 20:31

Summary

Red Hat Security Advisory: Helm CLI v4.1.4 release

Severity

Important

Notes

Topic: General availability release of Helm CLI v4.1.4.

Details: Helm is the package manager for Kubernetes, used to define, install, and upgrade applications as reusable charts. This release delivers the Helm v4.1.4 binaries built and distributed by Red Hat.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2026-35204

A flaw was found in Helm, a package manager for Kubernetes. An attacker could exploit this vulnerability by providing a specially crafted Helm plugin. When such a plugin is installed or updated, Helm incorrectly processes its configuration, allowing the plugin's contents to be written to an arbitrary location on the filesystem. This could lead to unauthorized modification of system files or other critical data.

8.2 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Helm CLI 4.1:helm-cli@amd64	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@amd64_darwin	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@amd64_windows	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@arm64	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@arm64_darwin	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@arm64_windows	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@s390x	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-35205

A flaw was found in Helm, a package manager for Kubernetes. A remote attacker could exploit this vulnerability by providing a malicious plugin that lacks a provenance file. Even when signature verification is enabled, Helm would incorrectly install this unverified plugin, bypassing critical security checks. This could lead to arbitrary code execution within the Kubernetes environment, allowing an attacker to gain unauthorized control.

8.0 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CWE-347 - Improper Verification of Cryptographic Signature

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Helm CLI 4.1:helm-cli@amd64	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@amd64_darwin	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@amd64_windows	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@arm64	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@arm64_darwin	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@arm64_windows	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Helm CLI 4.1:helm-cli@s390x	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-35206

A flaw was found in Helm, a package manager for Kubernetes. A remote attacker could exploit this vulnerability by providing a specially crafted Chart to the `helm pull --untar` command. This would cause the Chart's contents to be written to an unintended directory, potentially overwriting existing files or placing malicious files in an accessible location, leading to data integrity and availability issues.

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Helm CLI 4.1:helm-cli@amd64	—	Vendor Fix fix
Unresolved product id: Helm CLI 4.1:helm-cli@amd64_darwin	—	Vendor Fix fix
Unresolved product id: Helm CLI 4.1:helm-cli@amd64_windows	—	Vendor Fix fix
Unresolved product id: Helm CLI 4.1:helm-cli@arm64	—	Vendor Fix fix
Unresolved product id: Helm CLI 4.1:helm-cli@arm64_darwin	—	Vendor Fix fix
Unresolved product id: Helm CLI 4.1:helm-cli@arm64_windows	—	Vendor Fix fix
Unresolved product id: Helm CLI 4.1:helm-cli@ppc64le	—	Vendor Fix fix
Unresolved product id: Helm CLI 4.1:helm-cli@s390x	—	Vendor Fix fix

Threats

Impact Moderate

References

29 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:26441	self
https://access.redhat.com/security/cve/CVE-2026-35204	external
https://access.redhat.com/security/cve/CVE-2026-35205	external
https://access.redhat.com/security/cve/CVE-2026-35206	external
https://access.redhat.com/security/updates/classi…	external
https://github.com/helm/helm/releases/tag/v4.1.4	external
https://helm.sh/docs/	external
https://mirror.openshift.com/pub/cgw/helm/4.1.4/	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-35204	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456933	external
https://www.cve.org/CVERecord?id=CVE-2026-35204	external
https://nvd.nist.gov/vuln/detail/CVE-2026-35204	external
https://github.com/helm/helm/commit/36c8539e99bc4…	external
https://github.com/helm/helm/releases/tag/v4.1.4	external
https://github.com/helm/helm/security/advisories/…	external
https://access.redhat.com/security/cve/CVE-2026-35205	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456927	external
https://www.cve.org/CVERecord?id=CVE-2026-35205	external
https://nvd.nist.gov/vuln/detail/CVE-2026-35205	external
https://github.com/helm/helm/commit/05fa37973dc9e…	external
https://github.com/helm/helm/security/advisories/…	external
https://helm.sh/docs/topics/provenance/#the-prove…	external
https://access.redhat.com/security/cve/CVE-2026-35206	self
https://bugzilla.redhat.com/show_bug.cgi?id=2457151	external
https://www.cve.org/CVERecord?id=CVE-2026-35206	external
https://nvd.nist.gov/vuln/detail/CVE-2026-35206	external
https://github.com/helm/helm/commit/4e7994d446718…	external
https://github.com/helm/helm/security/advisories/…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "General availability release of Helm CLI v4.1.4.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Helm is the package manager for Kubernetes, used to define, install, and upgrade applications as reusable charts. This release delivers the Helm v4.1.4 binaries built and distributed by Red Hat.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:26441",
        "url": "https://access.redhat.com/errata/RHSA-2026:26441"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-35204",
        "url": "https://access.redhat.com/security/cve/CVE-2026-35204"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-35205",
        "url": "https://access.redhat.com/security/cve/CVE-2026-35205"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-35206",
        "url": "https://access.redhat.com/security/cve/CVE-2026-35206"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/",
        "url": "https://access.redhat.com/security/updates/classification/"
      },
      {
        "category": "external",
        "summary": "https://github.com/helm/helm/releases/tag/v4.1.4",
        "url": "https://github.com/helm/helm/releases/tag/v4.1.4"
      },
      {
        "category": "external",
        "summary": "https://helm.sh/docs/",
        "url": "https://helm.sh/docs/"
      },
      {
        "category": "external",
        "summary": "https://mirror.openshift.com/pub/cgw/helm/4.1.4/",
        "url": "https://mirror.openshift.com/pub/cgw/helm/4.1.4/"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_26441.json"
      }
    ],
    "title": "Red Hat Security Advisory: Helm CLI v4.1.4 release",
    "tracking": {
      "current_release_date": "2026-06-16T20:31:06+00:00",
      "generator": {
        "date": "2026-06-16T20:31:06+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "5.0.0"
        }
      },
      "id": "RHSA-2026:26441",
      "initial_release_date": "2026-06-16T20:29:05+00:00",
      "revision_history": [
        {
          "date": "2026-06-16T20:29:05+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-06-16T20:29:17+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-16T20:31:06+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Helm CLI 4.1",
                "product": {
                  "name": "Helm CLI 4.1",
                  "product_id": "Helm CLI 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:helm_cli:4.1::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Helm CLI"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-cli@amd64_windows",
                "product": {
                  "name": "helm-cli@amd64_windows",
                  "product_id": "helm-cli@amd64_windows",
                  "product_identification_helper": {
                    "purl": "pkg:generic/helm-cli@4.1.4?filename=helm-windows-amd64.zip\u0026checksum=sha256:981377e39848776108d53b073f578554989e37bb1e2edbec1914dc2ec9e276e7\u0026download_url=https://developers.redhat.com/products"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64_windows"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-cli@arm64_windows",
                "product": {
                  "name": "helm-cli@arm64_windows",
                  "product_id": "helm-cli@arm64_windows",
                  "product_identification_helper": {
                    "purl": "pkg:generic/helm-cli@4.1.4?filename=helm-windows-arm64.zip\u0026checksum=sha256:f42baf560541087b59217e1539816a1b18bf7cb707e0226327221054958f019b\u0026download_url=https://developers.redhat.com/products"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64_windows"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-cli@amd64",
                "product": {
                  "name": "helm-cli@amd64",
                  "product_id": "helm-cli@amd64",
                  "product_identification_helper": {
                    "purl": "pkg:generic/helm-cli@4.1.4?filename=helm-linux-amd64.tar.gz\u0026checksum=sha256:6f953797650167509d767d5d7a2cd6dbdded66e433fe633d083fe412f7b0917e\u0026download_url=https://developers.redhat.com/products"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-cli@arm64",
                "product": {
                  "name": "helm-cli@arm64",
                  "product_id": "helm-cli@arm64",
                  "product_identification_helper": {
                    "purl": "pkg:generic/helm-cli@4.1.4?filename=helm-linux-arm64.tar.gz\u0026checksum=sha256:fd3a0f2ae418b50aa7061d08ff27fd40eb90325a9ef9087609711959cc60fab3\u0026download_url=https://developers.redhat.com/products"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-cli@ppc64le",
                "product": {
                  "name": "helm-cli@ppc64le",
                  "product_id": "helm-cli@ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:generic/helm-cli@4.1.4?filename=helm-linux-ppc64le.tar.gz\u0026checksum=sha256:7ee6552e0a6ba188ad6417be70caf26f725c3c448a0cd5907c23f4e61248929d\u0026download_url=https://developers.redhat.com/products"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-cli@s390x",
                "product": {
                  "name": "helm-cli@s390x",
                  "product_id": "helm-cli@s390x",
                  "product_identification_helper": {
                    "purl": "pkg:generic/helm-cli@4.1.4?filename=helm-linux-s390x.tar.gz\u0026checksum=sha256:5953204ca216fb9d2be355ff82ba1d942c8ee3152a79c8a0e8c465f9f20be114\u0026download_url=https://developers.redhat.com/products"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-cli@amd64_darwin",
                "product": {
                  "name": "helm-cli@amd64_darwin",
                  "product_id": "helm-cli@amd64_darwin",
                  "product_identification_helper": {
                    "purl": "pkg:generic/helm-cli@4.1.4?filename=helm-darwin-amd64.tar.gz\u0026checksum=sha256:8f2023aa2a658e47a4a8a67d8c9b828fb95f224b666e3bcd68aa02b54c71a1c3\u0026download_url=https://developers.redhat.com/products"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64_darwin"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "helm-cli@arm64_darwin",
                "product": {
                  "name": "helm-cli@arm64_darwin",
                  "product_id": "helm-cli@arm64_darwin",
                  "product_identification_helper": {
                    "purl": "pkg:generic/helm-cli@4.1.4?filename=helm-darwin-arm64.tar.gz\u0026checksum=sha256:d5e5a6a3629e657cc462a3a9478acede304e9ee21de87854c411681d8d11c18c\u0026download_url=https://developers.redhat.com/products"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64_darwin"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-cli@amd64 as a component of Helm CLI 4.1",
          "product_id": "Helm CLI 4.1:helm-cli@amd64"
        },
        "product_reference": "helm-cli@amd64",
        "relates_to_product_reference": "Helm CLI 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-cli@amd64_darwin as a component of Helm CLI 4.1",
          "product_id": "Helm CLI 4.1:helm-cli@amd64_darwin"
        },
        "product_reference": "helm-cli@amd64_darwin",
        "relates_to_product_reference": "Helm CLI 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-cli@amd64_windows as a component of Helm CLI 4.1",
          "product_id": "Helm CLI 4.1:helm-cli@amd64_windows"
        },
        "product_reference": "helm-cli@amd64_windows",
        "relates_to_product_reference": "Helm CLI 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-cli@arm64 as a component of Helm CLI 4.1",
          "product_id": "Helm CLI 4.1:helm-cli@arm64"
        },
        "product_reference": "helm-cli@arm64",
        "relates_to_product_reference": "Helm CLI 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-cli@arm64_darwin as a component of Helm CLI 4.1",
          "product_id": "Helm CLI 4.1:helm-cli@arm64_darwin"
        },
        "product_reference": "helm-cli@arm64_darwin",
        "relates_to_product_reference": "Helm CLI 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-cli@arm64_windows as a component of Helm CLI 4.1",
          "product_id": "Helm CLI 4.1:helm-cli@arm64_windows"
        },
        "product_reference": "helm-cli@arm64_windows",
        "relates_to_product_reference": "Helm CLI 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-cli@ppc64le as a component of Helm CLI 4.1",
          "product_id": "Helm CLI 4.1:helm-cli@ppc64le"
        },
        "product_reference": "helm-cli@ppc64le",
        "relates_to_product_reference": "Helm CLI 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "helm-cli@s390x as a component of Helm CLI 4.1",
          "product_id": "Helm CLI 4.1:helm-cli@s390x"
        },
        "product_reference": "helm-cli@s390x",
        "relates_to_product_reference": "Helm CLI 4.1"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-35204",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "discovery_date": "2026-04-09T16:01:36.464601+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456933"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Helm, a package manager for Kubernetes. An attacker could exploit this vulnerability by providing a specially crafted Helm plugin. When such a plugin is installed or updated, Helm incorrectly processes its configuration, allowing the plugin\u0027s contents to be written to an arbitrary location on the filesystem. This could lead to unauthorized modification of system files or other critical data.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/helm/helm: helm.sh/helm/v4: Helm: Arbitrary file write via specially crafted plugin",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Helm CLI 4.1:helm-cli@amd64",
          "Helm CLI 4.1:helm-cli@amd64_darwin",
          "Helm CLI 4.1:helm-cli@amd64_windows",
          "Helm CLI 4.1:helm-cli@arm64",
          "Helm CLI 4.1:helm-cli@arm64_darwin",
          "Helm CLI 4.1:helm-cli@arm64_windows",
          "Helm CLI 4.1:helm-cli@ppc64le",
          "Helm CLI 4.1:helm-cli@s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-35204"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456933",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456933"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-35204",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-35204"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-35204",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35204"
        },
        {
          "category": "external",
          "summary": "https://github.com/helm/helm/commit/36c8539e99bc42d7aef9b87d136254662d04f027",
          "url": "https://github.com/helm/helm/commit/36c8539e99bc42d7aef9b87d136254662d04f027"
        },
        {
          "category": "external",
          "summary": "https://github.com/helm/helm/releases/tag/v4.1.4",
          "url": "https://github.com/helm/helm/releases/tag/v4.1.4"
        },
        {
          "category": "external",
          "summary": "https://github.com/helm/helm/security/advisories/GHSA-vmx8-mqv2-9gmg",
          "url": "https://github.com/helm/helm/security/advisories/GHSA-vmx8-mqv2-9gmg"
        }
      ],
      "release_date": "2026-04-09T15:03:28.668000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-06-16T20:29:05+00:00",
          "details": "Download the Helm CLI v4.1.4 binaries for your platform from https://mirror.openshift.com/pub/cgw/helm/4.1.4/",
          "product_ids": [
            "Helm CLI 4.1:helm-cli@amd64",
            "Helm CLI 4.1:helm-cli@amd64_darwin",
            "Helm CLI 4.1:helm-cli@amd64_windows",
            "Helm CLI 4.1:helm-cli@arm64",
            "Helm CLI 4.1:helm-cli@arm64_darwin",
            "Helm CLI 4.1:helm-cli@arm64_windows",
            "Helm CLI 4.1:helm-cli@ppc64le",
            "Helm CLI 4.1:helm-cli@s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:26441"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Helm CLI 4.1:helm-cli@amd64",
            "Helm CLI 4.1:helm-cli@amd64_darwin",
            "Helm CLI 4.1:helm-cli@amd64_windows",
            "Helm CLI 4.1:helm-cli@arm64",
            "Helm CLI 4.1:helm-cli@arm64_darwin",
            "Helm CLI 4.1:helm-cli@arm64_windows",
            "Helm CLI 4.1:helm-cli@ppc64le",
            "Helm CLI 4.1:helm-cli@s390x"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Helm CLI 4.1:helm-cli@amd64",
            "Helm CLI 4.1:helm-cli@amd64_darwin",
            "Helm CLI 4.1:helm-cli@amd64_windows",
            "Helm CLI 4.1:helm-cli@arm64",
            "Helm CLI 4.1:helm-cli@arm64_darwin",
            "Helm CLI 4.1:helm-cli@arm64_windows",
            "Helm CLI 4.1:helm-cli@ppc64le",
            "Helm CLI 4.1:helm-cli@s390x"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/helm/helm: helm.sh/helm/v4: Helm: Arbitrary file write via specially crafted plugin"
    },
    {
      "cve": "CVE-2026-35205",
      "cwe": {
        "id": "CWE-347",
        "name": "Improper Verification of Cryptographic Signature"
      },
      "discovery_date": "2026-04-09T16:01:08.682859+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456927"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Helm, a package manager for Kubernetes. A remote attacker could exploit this vulnerability by providing a malicious plugin that lacks a provenance file. Even when signature verification is enabled, Helm would incorrectly install this unverified plugin, bypassing critical security checks. This could lead to arbitrary code execution within the Kubernetes environment, allowing an attacker to gain unauthorized control.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/helm/helm: helm.sh/helm/v4: Helm: Arbitrary code execution due to insufficient plugin provenance verification",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Helm CLI 4.1:helm-cli@amd64",
          "Helm CLI 4.1:helm-cli@amd64_darwin",
          "Helm CLI 4.1:helm-cli@amd64_windows",
          "Helm CLI 4.1:helm-cli@arm64",
          "Helm CLI 4.1:helm-cli@arm64_darwin",
          "Helm CLI 4.1:helm-cli@arm64_windows",
          "Helm CLI 4.1:helm-cli@ppc64le",
          "Helm CLI 4.1:helm-cli@s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-35205"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456927",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456927"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-35205",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-35205"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-35205",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35205"
        },
        {
          "category": "external",
          "summary": "https://github.com/helm/helm/commit/05fa37973dc9e42b76e1d2883494c87174b6074f",
          "url": "https://github.com/helm/helm/commit/05fa37973dc9e42b76e1d2883494c87174b6074f"
        },
        {
          "category": "external",
          "summary": "https://github.com/helm/helm/releases/tag/v4.1.4",
          "url": "https://github.com/helm/helm/releases/tag/v4.1.4"
        },
        {
          "category": "external",
          "summary": "https://github.com/helm/helm/security/advisories/GHSA-q5jf-9vfq-h4h7",
          "url": "https://github.com/helm/helm/security/advisories/GHSA-q5jf-9vfq-h4h7"
        },
        {
          "category": "external",
          "summary": "https://helm.sh/docs/topics/provenance/#the-provenance-file",
          "url": "https://helm.sh/docs/topics/provenance/#the-provenance-file"
        }
      ],
      "release_date": "2026-04-09T15:06:41.052000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-06-16T20:29:05+00:00",
          "details": "Download the Helm CLI v4.1.4 binaries for your platform from https://mirror.openshift.com/pub/cgw/helm/4.1.4/",
          "product_ids": [
            "Helm CLI 4.1:helm-cli@amd64",
            "Helm CLI 4.1:helm-cli@amd64_darwin",
            "Helm CLI 4.1:helm-cli@amd64_windows",
            "Helm CLI 4.1:helm-cli@arm64",
            "Helm CLI 4.1:helm-cli@arm64_darwin",
            "Helm CLI 4.1:helm-cli@arm64_windows",
            "Helm CLI 4.1:helm-cli@ppc64le",
            "Helm CLI 4.1:helm-cli@s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:26441"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Helm CLI 4.1:helm-cli@amd64",
            "Helm CLI 4.1:helm-cli@amd64_darwin",
            "Helm CLI 4.1:helm-cli@amd64_windows",
            "Helm CLI 4.1:helm-cli@arm64",
            "Helm CLI 4.1:helm-cli@arm64_darwin",
            "Helm CLI 4.1:helm-cli@arm64_windows",
            "Helm CLI 4.1:helm-cli@ppc64le",
            "Helm CLI 4.1:helm-cli@s390x"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.0,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Helm CLI 4.1:helm-cli@amd64",
            "Helm CLI 4.1:helm-cli@amd64_darwin",
            "Helm CLI 4.1:helm-cli@amd64_windows",
            "Helm CLI 4.1:helm-cli@arm64",
            "Helm CLI 4.1:helm-cli@arm64_darwin",
            "Helm CLI 4.1:helm-cli@arm64_windows",
            "Helm CLI 4.1:helm-cli@ppc64le",
            "Helm CLI 4.1:helm-cli@s390x"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/helm/helm: helm.sh/helm/v4: Helm: Arbitrary code execution due to insufficient plugin provenance verification"
    },
    {
      "cve": "CVE-2026-35206",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "discovery_date": "2026-04-09T22:05:35.573151+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2457151"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Helm, a package manager for Kubernetes. A remote attacker could exploit this vulnerability by providing a specially crafted Chart to the `helm pull --untar` command. This would cause the Chart\u0027s contents to be written to an unintended directory, potentially overwriting existing files or placing malicious files in an accessible location, leading to data integrity and availability issues.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/helm/helm: Helm: Files written to unexpected directory via specially crafted Chart",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Helm CLI 4.1:helm-cli@amd64",
          "Helm CLI 4.1:helm-cli@amd64_darwin",
          "Helm CLI 4.1:helm-cli@amd64_windows",
          "Helm CLI 4.1:helm-cli@arm64",
          "Helm CLI 4.1:helm-cli@arm64_darwin",
          "Helm CLI 4.1:helm-cli@arm64_windows",
          "Helm CLI 4.1:helm-cli@ppc64le",
          "Helm CLI 4.1:helm-cli@s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-35206"
        },
        {
          "category": "external",
          "summary": "RHBZ#2457151",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2457151"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-35206",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-35206"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-35206",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35206"
        },
        {
          "category": "external",
          "summary": "https://github.com/helm/helm/commit/4e7994d4467182f535b6797c94b5b0e994a91436",
          "url": "https://github.com/helm/helm/commit/4e7994d4467182f535b6797c94b5b0e994a91436"
        },
        {
          "category": "external",
          "summary": "https://github.com/helm/helm/releases/tag/v4.1.4",
          "url": "https://github.com/helm/helm/releases/tag/v4.1.4"
        },
        {
          "category": "external",
          "summary": "https://github.com/helm/helm/security/advisories/GHSA-hr2v-4r36-88hr",
          "url": "https://github.com/helm/helm/security/advisories/GHSA-hr2v-4r36-88hr"
        }
      ],
      "release_date": "2026-04-09T21:02:13.594000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-06-16T20:29:05+00:00",
          "details": "Download the Helm CLI v4.1.4 binaries for your platform from https://mirror.openshift.com/pub/cgw/helm/4.1.4/",
          "product_ids": [
            "Helm CLI 4.1:helm-cli@amd64",
            "Helm CLI 4.1:helm-cli@amd64_darwin",
            "Helm CLI 4.1:helm-cli@amd64_windows",
            "Helm CLI 4.1:helm-cli@arm64",
            "Helm CLI 4.1:helm-cli@arm64_darwin",
            "Helm CLI 4.1:helm-cli@arm64_windows",
            "Helm CLI 4.1:helm-cli@ppc64le",
            "Helm CLI 4.1:helm-cli@s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:26441"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "LOW",
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "Helm CLI 4.1:helm-cli@amd64",
            "Helm CLI 4.1:helm-cli@amd64_darwin",
            "Helm CLI 4.1:helm-cli@amd64_windows",
            "Helm CLI 4.1:helm-cli@arm64",
            "Helm CLI 4.1:helm-cli@arm64_darwin",
            "Helm CLI 4.1:helm-cli@arm64_windows",
            "Helm CLI 4.1:helm-cli@ppc64le",
            "Helm CLI 4.1:helm-cli@s390x"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "github.com/helm/helm: Helm: Files written to unexpected directory via specially crafted Chart"
    }
  ]
}

CVE-2026-35204 (GCVE-0-2026-35204)

Vulnerability from cvelistv5 – Published: 2026-04-09 15:03 – Updated: 2026-04-09 17:46

Title

Helm has a path traversal in plugin metadata version enables arbitrary file write outside Helm plugin directory

Summary

Helm is a package manager for Charts for Kubernetes. From 4.0.0 to 4.1.3, a specially crafted Helm plugin, when installed or updated, will cause Helm to write the contents of the plugin to an arbitrary filesystem location. To prevent this, validate that the plugin.yaml of the Helm plugin does not include a version: field containing POSIX dot-dot path separators ie. "/../". This vulnerability is fixed in 4.1.4.

Severity

8.4 (High)


                        
                          CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:L/SC:H/SI:H/SA:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Assigner

GitHub_M

References

3 references

URL	Tags
https://github.com/helm/helm/security/advisories/…	x_refsource_CONFIRM
https://github.com/helm/helm/commit/36c8539e99bc4…	x_refsource_MISC
https://github.com/helm/helm/releases/tag/v4.1.4	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
helm	helm	Affected: >= 4.0.0, < 4.1.4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-35204",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-09T17:46:08.508995Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-09T17:46:15.811Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "helm",
          "vendor": "helm",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 4.0.0, \u003c 4.1.4"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Helm is a package manager for Charts for Kubernetes. From 4.0.0 to 4.1.3, a specially crafted Helm plugin, when installed or updated, will cause Helm to write the contents of the plugin to an arbitrary filesystem location. To prevent this, validate that the plugin.yaml of the Helm plugin does not include a version: field containing POSIX dot-dot path separators ie. \"/../\". This vulnerability is fixed in 4.1.4."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "LOCAL",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "privilegesRequired": "NONE",
            "subAvailabilityImpact": "HIGH",
            "subConfidentialityImpact": "HIGH",
            "subIntegrityImpact": "HIGH",
            "userInteraction": "PASSIVE",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:L/SC:H/SI:H/SA:H",
            "version": "4.0",
            "vulnAvailabilityImpact": "LOW",
            "vulnConfidentialityImpact": "NONE",
            "vulnIntegrityImpact": "HIGH"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-22",
              "description": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-09T15:03:28.668Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/helm/helm/security/advisories/GHSA-vmx8-mqv2-9gmg",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/helm/helm/security/advisories/GHSA-vmx8-mqv2-9gmg"
        },
        {
          "name": "https://github.com/helm/helm/commit/36c8539e99bc42d7aef9b87d136254662d04f027",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/helm/helm/commit/36c8539e99bc42d7aef9b87d136254662d04f027"
        },
        {
          "name": "https://github.com/helm/helm/releases/tag/v4.1.4",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/helm/helm/releases/tag/v4.1.4"
        }
      ],
      "source": {
        "advisory": "GHSA-vmx8-mqv2-9gmg",
        "discovery": "UNKNOWN"
      },
      "title": "Helm has a path traversal in plugin metadata version enables arbitrary file write outside Helm plugin directory"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2026-35204",
    "datePublished": "2026-04-09T15:03:28.668Z",
    "dateReserved": "2026-04-01T18:48:58.937Z",
    "dateUpdated": "2026-04-09T17:46:15.811Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-35205 (GCVE-0-2026-35205)

Vulnerability from cvelistv5 – Published: 2026-04-09 15:06 – Updated: 2026-04-09 16:05

Title

Helm's plugin verification fails open when .prov is missing, allowing unsigned plugin install

Summary

Helm is a package manager for Charts for Kubernetes. From 4.0.0 to 4.1.3, Helm will install plugins missing provenance (.prov file) when signature verification is required. This vulnerability is fixed in 4.1.4.

Severity

8.4 (High)


                        
                          CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

SSVC

Exploitation: none Automatable: no Technical Impact: total

CISA Coordinator (v2.0.3)

CWE

CWE-636 - Not Failing Securely ('Failing Open')

Assigner

GitHub_M

References

4 references

URL	Tags
https://github.com/helm/helm/security/advisories/…	x_refsource_CONFIRM
https://github.com/helm/helm/commit/05fa37973dc9e…	x_refsource_MISC
https://github.com/helm/helm/releases/tag/v4.1.4	x_refsource_MISC
https://helm.sh/docs/topics/provenance/#the-prove…	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
helm	helm	Affected: >= 4.0.0, < 4.1.4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-35205",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-09T16:04:47.054575Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-09T16:05:00.744Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "helm",
          "vendor": "helm",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 4.0.0, \u003c 4.1.4"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Helm is a package manager for Charts for Kubernetes. From 4.0.0 to 4.1.3, Helm will install plugins missing provenance (.prov file) when signature verification is required. This vulnerability is fixed in 4.1.4."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "LOCAL",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "privilegesRequired": "NONE",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "ACTIVE",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-636",
              "description": "CWE-636: Not Failing Securely (\u0027Failing Open\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-09T15:06:41.052Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/helm/helm/security/advisories/GHSA-q5jf-9vfq-h4h7",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/helm/helm/security/advisories/GHSA-q5jf-9vfq-h4h7"
        },
        {
          "name": "https://github.com/helm/helm/commit/05fa37973dc9e42b76e1d2883494c87174b6074f",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/helm/helm/commit/05fa37973dc9e42b76e1d2883494c87174b6074f"
        },
        {
          "name": "https://github.com/helm/helm/releases/tag/v4.1.4",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/helm/helm/releases/tag/v4.1.4"
        },
        {
          "name": "https://helm.sh/docs/topics/provenance/#the-provenance-file",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://helm.sh/docs/topics/provenance/#the-provenance-file"
        }
      ],
      "source": {
        "advisory": "GHSA-q5jf-9vfq-h4h7",
        "discovery": "UNKNOWN"
      },
      "title": "Helm\u0027s plugin verification fails open when .prov is missing, allowing unsigned plugin install"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2026-35205",
    "datePublished": "2026-04-09T15:06:41.052Z",
    "dateReserved": "2026-04-01T18:48:58.937Z",
    "dateUpdated": "2026-04-09T16:05:00.744Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-35206 (GCVE-0-2026-35206)

Vulnerability from cvelistv5 – Published: 2026-04-09 21:02 – Updated: 2026-04-14 14:45

Title

Helm Chart extraction output directory collapse via `Chart.yaml` name dot-segment

Summary

Helm is a package manager for Charts for Kubernetes. In Helm versions <=3.20.1 and <=4.1.3, a specially crafted Chart will cause helm pull --untar [chart URL | repo/chartname] to write the Chart's contents to the immediate output directory (as defaulted to the current working directory; or as given by the --destination and --untardir flags), rather than the expected output directory suffixed by the chart's name. This vulnerability is fixed in 3.20.2 and 4.1.4.

Severity

4.8 (Medium)


                        
                          CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Assigner

GitHub_M

References

3 references

URL	Tags
https://github.com/helm/helm/security/advisories/…	x_refsource_CONFIRM
https://github.com/helm/helm/commit/4e7994d446718…	x_refsource_MISC
https://github.com/helm/helm/releases/tag/v4.1.4	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
helm	helm	Affected: >= 4.0.0, < 4.1.4 Affected: < 3.20.2

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-35206",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-14T14:45:03.230344Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-14T14:45:12.096Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "helm",
          "vendor": "helm",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 4.0.0, \u003c 4.1.4"
            },
            {
              "status": "affected",
              "version": "\u003c 3.20.2"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Helm is a package manager for Charts for Kubernetes. In Helm versions \u003c=3.20.1 and \u003c=4.1.3, a specially crafted Chart will cause helm pull --untar  [chart URL | repo/chartname] to write the Chart\u0027s contents to the immediate output directory (as defaulted to the current working directory; or as given by the --destination and --untardir flags), rather than the expected output directory suffixed by the chart\u0027s name. This vulnerability is fixed in 3.20.2 and 4.1.4."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "LOCAL",
            "baseScore": 4.8,
            "baseSeverity": "MEDIUM",
            "privilegesRequired": "NONE",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "PASSIVE",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "LOW",
            "vulnConfidentialityImpact": "NONE",
            "vulnIntegrityImpact": "LOW"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-22",
              "description": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-09T21:02:13.594Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/helm/helm/security/advisories/GHSA-hr2v-4r36-88hr",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/helm/helm/security/advisories/GHSA-hr2v-4r36-88hr"
        },
        {
          "name": "https://github.com/helm/helm/commit/4e7994d4467182f535b6797c94b5b0e994a91436",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/helm/helm/commit/4e7994d4467182f535b6797c94b5b0e994a91436"
        },
        {
          "name": "https://github.com/helm/helm/releases/tag/v4.1.4",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/helm/helm/releases/tag/v4.1.4"
        }
      ],
      "source": {
        "advisory": "GHSA-hr2v-4r36-88hr",
        "discovery": "UNKNOWN"
      },
      "title": "Helm Chart extraction output directory collapse via `Chart.yaml` name dot-segment"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2026-35206",
    "datePublished": "2026-04-09T21:02:13.594Z",
    "dateReserved": "2026-04-01T18:48:58.937Z",
    "dateUpdated": "2026-04-14T14:45:12.096Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

RHSA-2026:26441

CVE-2026-35204 (GCVE-0-2026-35204)

CVE-2026-35205 (GCVE-0-2026-35205)

CVE-2026-35206 (GCVE-0-2026-35206)

Tags

Sightings

Nomenclature