VDB
GHSA-hr2v-4r36-88hr
GHSA-hr2v-4r36-88hr
PUBLISHED
CVSS 4.800000190734863 MEDIUM
Helm Chart extraction output directory collapse via `Chart.yaml` name dot-segment
Risk Scores
CVSS 4.0
4.800000190734863
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| helm.sh | helm/v4 | 0, 0, 0 |
| helm.sh | helm/v3 | 0, 0, 0 |
Exploit Intelligence
- dhi-istioctl.vex.json (github-poc)
- dhi-istioctl.vex.json (github-poc)
Timeline
- Apr 10, 2026 CVE Published
- Apr 11, 2026 Security Advisory