Vulnerabilities > Helm > Chartmuseum > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-02-04 CVE-2019-1000009 Path Traversal vulnerability in Helm Chartmuseum
Helm ChartMuseum version >=0.1.0 and < 0.8.1 contains a CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in HTTP API to save charts that can result in a specially crafted chart could be uploaded and saved outside the intended location.
network
low complexity
helm CWE-22
6.5