Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-35205

Helm is a package manager for Charts for Kubernetes. From 4.0.0 to 4.1.3, Helm will install plugins missing provenance (.prov file) when signature verification is required. This vulnerability is fixed in 4.1.4.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.6%
CVSS Severity
CVSS v3 Score 7.8
Products affected by CVE-2026-35205
  • Helm » Helm » Version: 4.0.0
    cpe:2.3:a:helm:helm:4.0.0
  • Helm » Helm » Version: 4.0.1
    cpe:2.3:a:helm:helm:4.0.1
  • Helm » Helm » Version: 4.0.2
    cpe:2.3:a:helm:helm:4.0.2
  • Helm » Helm » Version: 4.0.4
    cpe:2.3:a:helm:helm:4.0.4
  • Helm » Helm » Version: 4.0.5
    cpe:2.3:a:helm:helm:4.0.5
  • Helm » Helm » Version: 4.1.0
    cpe:2.3:a:helm:helm:4.1.0
  • Helm » Helm » Version: 4.1.1
    cpe:2.3:a:helm:helm:4.1.1
  • Helm » Helm » Version: 4.1.2
    cpe:2.3:a:helm:helm:4.1.2
  • Helm » Helm » Version: 4.1.3
    cpe:2.3:a:helm:helm:4.1.3


Products
Pricing
Contact Us

Shodan ® - All rights reserved