Lucene search
+L

4 matches found

SUSE CVE
SUSE CVE
added 2026/04/12 11:24 p.m.4 views

SUSE CVE-2026-35205

Helm is a package manager for Charts for Kubernetes. From 4.0.0 to 4.1.3, Helm will install plugins missing provenance .prov file when signature verification is required. This vulnerability is fixed in 4.1.4...

7.8CVSS5.8AI score0.00178EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/09 3:3 p.m.3 views

CVE-2026-35204

Helm is a package manager for Charts for Kubernetes. From 4.0.0 to 4.1.3, a specially crafted Helm plugin, when installed or updated, will cause Helm to write the contents of the plugin to an arbitrary filesystem location. To prevent this, validate that the plugin.yaml of the Helm plugin does not...

8.4CVSS6AI score0.00158EPSS
Exploits2References4Affected Software1
Cvelist
Cvelist
added 2026/04/09 3:3 p.m.24 views

CVE-2026-35204 Helm has a path traversal in plugin metadata version enables arbitrary file write outside Helm plugin directory

Helm is a package manager for Charts for Kubernetes. From 4.0.0 to 4.1.3, a specially crafted Helm plugin, when installed or updated, will cause Helm to write the contents of the plugin to an arbitrary filesystem location. To prevent this, validate that the plugin.yaml of the Helm plugin does not...

8.4CVSS0.00158EPSS
Exploits2References3
Patchstack
Patchstack
added 2025/09/23 11:30 a.m.5 views

WordPress Houzez Theme - Functionality Plugin <= 4.1.2 - Arbitrary File Download Vulnerability

WordPress Houzez Theme - Functionality Plugin = 4.1.2 - Arbitrary File Download Vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Houzez Theme - Functionality versions = 4.1.2...

8.5CVSS6.7AI score0.00251EPSS
Exploits0Affected Software1
Rows per page
Query Builder