3 matches found
CVE-2021-23154
In Lens prior to 5.3.4, custom helm chart configuration creates helm commands from string concatenation of provided arguments which are then executed in the user's shell. Arguments can be provided which cause arbitrary shell commands to run on the system...
CVE-2021-23154
CVE-2021-23154 affects Lens prior to 5.3.4. Affected component: custom helm chart configuration that builds helm commands by concatenating provided arguments, which are then executed in the user’s shell. Root cause: unsafe string concatenation enables arbitrary shell command execution. Impact: po...
CVE-2021-23154 Command injection in Lens causes arbitrary shell command execution when malicious custom helm chart configuration provided
In Lens prior to 5.3.4, custom helm chart configuration creates helm commands from string concatenation of provided arguments which are then executed in the user's shell. Arguments can be provided which cause arbitrary shell commands to run on the system...