Lucene search
K

4 matches found

OSV
OSV
added 2022/07/15 11:29 p.m.41 views

GO-2022-0384 Repository credentials passed to alternate domain in helm.sh/helm/v3

The username and password credentials associated with a Helm repository can be passed to another domain referenced by that Helm repository. If the index.yaml for a Helm repository is hosted on one domain and references a chart archive on a different domain, Helm will provide the credentials for t...

8.6CVSS8.5AI score0.01395EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2021/09/27 7:0 a.m.2 views

Repository credentials passed to alternate domain

...

8.6CVSS7.7AI score0.01395EPSS
Exploits0
OSV
OSV
added 2021/06/23 6:14 p.m.25 views

GHSA-56HP-XQP3-W2JF Helm passes repository credentials to alternate domain

While working on the Helm source, a Helm core maintainer discovered a situation where the username and password credentials associated with a Helm repository could be passed on to another domain referenced by that Helm repository. Impact The index.yaml within a Helm chart repository contains a...

8.6CVSS8.6AI score0.01395EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2021/06/23 6:14 p.m.58 views

Helm passes repository credentials to alternate domain

While working on the Helm source, a Helm core maintainer discovered a situation where the username and password credentials associated with a Helm repository could be passed on to another domain referenced by that Helm repository. Impact The index.yaml within a Helm chart repository contains a...

8.6CVSS7AI score0.01395EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder