CVE-2020-15185 — Injection in Helm

CWE-74 — Injection CWE-694 — Use of Multiple Resources with Duplicate Identifier CWE-20 — Improper Input Validation6 documents6 sources

Severity

2.7LOWNVD

CNA2.2

EPSS

0.2%

top 53.69%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Helm.sh Helm Helm.sh Helm V3 Helm

Timeline

PublishedSep 17

Latest updateMay 24

Description

In Helm before versions 2.16.11 and 3.3.2, a Helm repository can contain duplicates of the same chart, with the last one always used. If a repository is compromised, this lowers the level of access that an attacker needs to inject a bad chart into a repository. To perform this attack, an attacker must have write access to the index file (which can occur during a MITM attack on a non-SSL connection). This issue has been patched in Helm 3.3.2 and 2.16.11. A possible workaround is to manually revie…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:NExploitability: 1.2 | Impact: 1.4

Affected Packages4 packages

▶NVDhelm/helm2.0.0 — 2.16.11+1

▶Gohelm.sh/helm< 2.16.11

▶Gohelm.sh/helm_v33.0.0 — 3.3.2

▶CVEListV5helm/helm>= 2.0.0, < 2.16.11, >= 3.0.0, < 3.3.2+1

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

Repository index file allows for duplicates of the same chart entry in helm↗2021-05-24

▶

GHSA

Repository index file allows for duplicates of the same chart entry in helm↗2021-05-24

▶

CVEList

Duplicated chart entries in Helm↗2020-09-17

▶

📋Vendor Advisories

Red Hat

helm: write access to the index file allows an attacker to inject bad chart into repository↗2020-09-18

▶

💬Community

Bugzilla

CVE-2020-15185 helm: write access to the index file allows an attacker to inject bad chart into repository↗2020-09-24

▶