Improper Validation in Helm Package Manager for Kubernetes
CVE-2025-55198
Currently unrated
What is CVE-2025-55198?
Helm, a widely used package manager for Kubernetes Charts, has a vulnerability that arises from improper validation during the parsing of Chart.yaml and index.yaml files. This flaw can potentially lead to a panic, disrupting the functionality of the application. Users are urged to upgrade to Helm version 3.18.5 or later to mitigate this issue. For those unable to upgrade immediately, a temporary workaround involves ensuring that YAML files are properly formatted according to Helm's requirements prior to processing.