VDB
RHEA-2025%3A0507
RHEA-2025%3A0507
PUBLISHED
CVSS 7.5 HIGH
GA release of Helm 3.15.4 for OpenShift Container Platform 4.17 version.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| helm | ||
| OpenShift Developer Tools and Services for OCP 4.17 |
Exploit Intelligence
- https://access.redhat.com/errata/RHEA-2025:0507 (circl)
- https://docs.openshift.com/container-platform/latest/applications/working_with_helm_charts/installing-helm.html (circl)
- https://issues.redhat.com/browse/DPROD-391 (circl)
- https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhea-2025_0507.json (circl)
- .trivyignore.yml (github-poc)
- .trivyignore.yml (github-poc)
- .trivyignore.yml (github-poc)
- allowed-vulnerabilities.yml (github-poc)
- allowed-vulnerabilities.yml (github-poc)
- allowed-vulnerabilities.yml (github-poc)
…and 6 more exploits
Timeline
- Jan 21, 2025 CVE Published
- Apr 25, 2026 CVE Updated
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHEA-2025:0507 advisory
- https://docs.openshift.com/container-platform/latest/applications/working_with_helm_charts/installing-helm.html url
- https://issues.redhat.com/browse/DPROD-391 url
- https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhea-2025_0507.json advisory