Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fluxcd helm-controller vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2022-24817
Flux2 is an open and extensible continuous delivery solution for Kubernetes. Flux2 versions between 0.1.0 and 0.29.0, helm-controller 0.1.0 to v0.19.0, and kustomize-controller 0.1.0 to v0.23.0 are vulnerable to Code Injection via malicious Kubeconfig. In multi-tenancy deployment...
Fluxcd Kustomize-controller
Fluxcd Helm-controller
Fluxcd Flux2
NA
CVE-2022-36049
Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-controller is a Kubernetes operator that allows one to declaratively manage Helm chart releases. Helm controller is tightly integrated with the Helm SDK. A vulnerability fo...
Helm Helm
Fluxcd Helm-controller
Fluxcd Flux2
NA
CVE-2022-39272
Flux is an open and extensible continuous delivery solution for Kubernetes. Versions before 0.35.0 are subject to a Denial of Service. Users that have permissions to change Flux’s objects, either through a Flux source or directly within a cluster, can provide invalid data t...
Fluxcd Source-controller
Fluxcd Source-controller 0.0.1
Fluxcd Notification-controller 0.0.1
Fluxcd Notification-controller
Fluxcd Kustomize-controller
Fluxcd Kustomize-controller 0.0.1
Fluxcd Image-reflector-controller
Fluxcd Image-automation-controller
Fluxcd Helm-controller
Fluxcd Helm-controller 0.0.1
Fluxcd Flux2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started