CVE-2025-32386

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: Helm versions prior to 3.17.3

Description: A specially crafted chart archive file can cause Helm to exhaust its memory, leading to an out-of-memory termination. This occurs when the file expands to be significantly larger uncompressed than compressed, with a difference of over 800 times. The issue is related to how Helm loads chart archive files.

Recommendations: For versions prior to 3.17.3, update to Helm v3.17.3 to resolve the issue. As a temporary workaround, ensure that any chart archive files being loaded by Helm do not contain files that are large enough to cause the Helm Client or SDK to use up available memory leading to a termination.

Exploit

Fix

DoS

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770CWE-789

Related Identifiers

AZL-59808

AZL-59838

AZL-59991

AZL-60145

BDU:2025-06057

BIT-HELM-2025-32386

CVE-2025-32386

GHSA-4HFP-H4CW-HJ8P

GO-2025-3601

OPENSUSE-SU-2025:14995-1

SUSE-SU-2025:01830-1

SUSE-SU-2025:01830-2

SUSE-SU-2025_01830-1

SUSE-SU-2025_01830-2

Affected Products

Helm

Red Os

Suse

CVE-2025-32386

Weakness Enumeration

Related Identifiers

Affected Products

References · 38