Skip to main content
CVE-2020-15186 LOW PATCH Monitor

In Helm before versions 2.16.11 and 3.3.2 plugin names are not sanitized properly. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Helm
NVD GitHub
CVSS 3.1
2.7
EPSS
1.0%
CVE-2020-15185 LOW PATCH Monitor

In Helm before versions 2.16.11 and 3.3.2, a Helm repository can contain duplicates of the same chart, with the last one always used. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity.

Code Injection Helm
NVD GitHub
CVSS 3.1
2.7
EPSS
0.9%
CVE-2020-15184 LOW PATCH Monitor

In Helm before versions 2.16.11 and 3.3.2 there is a bug in which the `alias` field on a `Chart.yaml` is not properly sanitized. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity.

Code Injection Helm
NVD GitHub
CVSS 3.1
2.7
EPSS
1.0%
CVE-2020-0382 LOW Monitor

In RunInternal of dumpstate.cpp, there is a possible user consent bypass due to an uncaught exception. Rated low severity (CVSS 2.3), this vulnerability is low attack complexity. No vendor patch available.

Google Information Disclosure Android
NVD
CVSS 3.1
2.3
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy