Local Code Execution (LCE)

helm.sh/helm/v3 is vulnerable to Local Code Execution LCE. The vulnerability is due to insufficient validation and sanitization of the Chart.yaml and Chart.lock files during dependency updates, allowing a maliciously crafted file to trigger local code execution...

PT-2021-14402 · Helm +1 · Helm +1

Name of the Vulnerable Software and Affected Versions: Helm versions 3.0 through 3.5.2 Description: Helm, a tool for managing Charts in Kubernetes, has cases where data loaded from potentially untrusted sources was not properly sanitized. This includes invalid SemVer in the version field of a...

Memory Corruption Vulnerability in AutoShop V4.0.5.0 Timing Monitor Map

Shenzhen Huichuan Technology Co., Ltd. focuses on the research and development, production and sales of industrial automation control products, positioning itself to serve the middle and high-end equipment manufacturers, based on the industrial automation control technology with independent...