Out of Memory Issue in Helm Package Manager for Kubernetes
CVE-2025-55199
Currently unrated
What is CVE-2025-55199?
A vulnerability in Helm, a widely-used package manager for Kubernetes, allows maliciously crafted JSON Schema files to exploit memory allocation. This can lead to excessive memory consumption, resulting in an Out of Memory (OOM) termination of the process. Users are advised to upgrade to Helm version 3.18.5 or later to mitigate this issue. As a precaution, ensure that no Helm charts reference $ref pointing to /dev/zero to prevent exploitation.