github.com/fluxcd/helm-controller

Go3 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting github.com/fluxcd/helm-controllerpage 1 of 1

CVE-2022-24817CRITICALCVSS 9.9EG 9.9✓ Fixed in 0.19.0
2022-05-06
Flux2 is an open and extensible continuous delivery solution for Kubernetes. Flux2 versions between 0.1.0 and 0.29.0, helm-controller 0.1.0 to v0.19.0, and kustomize-controller 0.1.0 to v0.23.0 are vulnerable to Code Injection via maliciou…
CVE-2022-36049HIGHCVSS 7.7EG 7.7✓ Fixed in 0.23.0
2022-09-07
Flux2 is a tool for keeping Kubernetes clusters in sync with sources of configuration, and Flux's helm-controller is a Kubernetes operator that allows one to declaratively manage Helm chart releases. Helm controller is tightly integrated w…
CVE-2022-39272MEDIUMCVSS 5.0EG 5.0✓ Fixed in 0.24.0
2022-10-22
Flux is an open and extensible continuous delivery solution for Kubernetes. Versions prior to 0.35.0 are subject to a Denial of Service. Users that have permissions to change Flux’s objects, either through a Flux source or directly withi…

Check whether github.com/fluxcd/helm-controller is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for github.com/fluxcd/helm-controller CVEs against the assets you own.

Start Free Scan →