CVE-2025-53547
HIGH8.5EPSS 0.02%Helm vulnerable to Code Injection through malicious chart.yaml content in helm.sh/helm
發布日:2025/7/8修改日:2026/2/4
描述
Helm vulnerable to Code Injection through malicious chart.yaml content in helm.sh/helm
受影響套件(3)
- Bitnami/helmfrom 0, < 3.18.4
- Go/helm.sh/helm/v3>= 3.18.0-rc.1, < 3.18.4
- Go/helm.sh/helm/v3from 0, < 3.18.4
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.5 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:H |