CVE-2026-35204

Helm versions 4.0.0 through 4.1.3 Description Helm, a package manager for Kubernetes Charts, contains a flaw where a crafted plugin, during installation or update, can write files to arbitrary locations on the filesystem. This occurs because the version field within the plugin.yaml file lacks validation, allowing for the use of POSIX dot-dot path separators (e.g., "/../"). This could allow a malicious plugin author to write files outside the intended plugin directory. The issue is addressed in version 4.1.4, which adds semantic versioning validation to the version field.

Recommendations Upgrade to Helm version 4.1.4. Examine the plugin.yaml files in your Helm plugin directory (helm env HELM PLUGINS) and verify that the version fields do not contain unusual characters like slashes or non-semantic versioning dots. Only install plugins from trusted sources.