Primary

Context

Helm Out-of-Memory Denial-of-Service Vulnerability

Vulnerability

Patched

A denial-of-service vulnerability has been identified in Helm versions prior to 3.17.2. This issue arises when a chart archive file is crafted to be significantly larger when uncompressed than when compressed, with some cases showing over an 800-fold difference. When Helm processes these specially crafted charts, the application can exhaust available memory, leading to termination.

Impact

Exploiting this vulnerability can cause Helm to run out of memory and terminate, disrupting any ongoing processes or operations that rely on the Helm application.

Remediation

Users can upgrade to Helm version 3.17.3 or later to address this vulnerability. Additionally, ensure that chart archive files do not contain excessively large files that could overwhelm the Helm Client or SDK's memory capacity.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

5.1

remediation

8.3

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

5.1

remediation

8.3

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Helm Out-of-Memory Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Helm

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating