VDB

CVE-2025-55199

CVE-2025-55199 PUBLISHED

Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, it is possible to craft a JSON Schema file in a manner which could cause Helm to use all available memory and have an out of memory (OOM) termination. This issue has been resolved in Helm 3.18.5. A workaround involves ensuring all Helm charts that are being loaded into Helm do not have any reference of $ref pointing to /dev/zero.

EPSS 0.02% · 5.9th percentile

Risk Scores

EPSS Score
0.02%
5.9th percentile

Affected Products

VendorProductVersions
Bitnamihelm0
Bitnamihelm0

Timeline

  • Jan 21, 1970 Security Advisory
  • Aug 13, 2025 CVE Published
  • Aug 14, 2025 EPSS Score
  • Aug 14, 2025 Coalition ESS Score
  • Aug 14, 2025 CVE Updated
  • Aug 21, 2025 Coalition ESS Score
  • Aug 22, 2025 EPSS Score
  • Aug 22, 2025 Coalition ESS Score
  • Aug 26, 2025 Coalition ESS Score
  • Aug 30, 2025 EPSS Score
  • Sep 8, 2025 EPSS Score
  • Sep 16, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›