Vulnerabilities > Helm > Helm > 2.12.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-16 | CVE-2021-32690 | Unspecified vulnerability in Helm Helm is a tool for managing Charts (packages of pre-configured Kubernetes resources). | 8.6 |
| 2020-09-17 | CVE-2020-15187 | Unspecified vulnerability in Helm In Helm before versions 2.16.11 and 3.3.2, a Helm plugin can contain duplicates of the same entry, with the last one always used. | 6.5 |
| 2020-09-17 | CVE-2020-15186 | Injection vulnerability in Helm In Helm before versions 2.16.11 and 3.3.2 plugin names are not sanitized properly. | 4.0 |
| 2020-09-17 | CVE-2020-15185 | Unspecified vulnerability in Helm In Helm before versions 2.16.11 and 3.3.2, a Helm repository can contain duplicates of the same chart, with the last one always used. | 4.0 |
| 2020-09-17 | CVE-2020-15184 | Injection vulnerability in Helm In Helm before versions 2.16.11 and 3.3.2 there is a bug in which the `alias` field on a `Chart.yaml` is not properly sanitized. | 4.0 |
| 2019-11-12 | CVE-2019-18658 | Link Following vulnerability in Helm In Helm 2.x before 2.15.2, commands that deal with loading a chart as a directory or packaging a chart provide an opportunity for a maliciously designed chart to include sensitive content such as /etc/passwd, or to execute a denial of service (DoS) via a special file such as /dev/urandom, via symlinks. | 7.5 |