VDB
GHSA-7jr6-prv4-5wf5
GHSA-7jr6-prv4-5wf5
REJECTED
Duplicate Advisory: Helm passes repository credentials to alternate domain
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| helm.sh | helm/v3 | 0 |
Timeline
- Jun 23, 2021 CVE Published
- Jan 26, 2026 CVE Updated
- Mar 2, 2026 Security Advisory
References
- https://github.com/helm/helm/security/advisories/GHSA-56hp-xqp3-w2jf url
- https://nvd.nist.gov/vuln/detail/CVE-2021-32690 advisory
- https://github.com/helm/helm/commit/61d8e8c4a6f95540c15c6a65f36a6dd0a45e7a2f url
- https://github.com/advisories/GHSA-56hp-xqp3-w2jf advisory
- https://github.com/helm/helm package
- https://github.com/helm/helm/releases/tag/v3.6.1 url
- https://pkg.go.dev/vuln/GO-2022-0384 url