Description
Helm is a package manager for Charts for Kubernetes. From 4.0.0 to 4.1.3, Helm will install plugins missing provenance (.prov file) when signature verification is required. This vulnerability is fixed in 4.1.4.
Published: 2026-04-09
Score: 8.4 High
EPSS: < 1% Very Low
KEV: No
Impact: Unsigned Plugin Installation
Action: Update immediately
AI Analysis

Impact

Helm’s plugin verification logic bypasses signature checks when the provenance file (.prov) is missing, enabling the installation of unsigned plugins as if they were legitimate. This flaw permits an attacker to deploy arbitrary code through a malicious plugin that will run with the privileges of the Helm process and potentially affect the Kubernetes cluster environment.

Affected Systems

Helm releases from 4.0.0 through 4.1.3 are affected. The vulnerability has been remediated in Helm 4.1.4, which restores proper provenance verification before plugin installation.

Risk and Exploitability

The vulnerability carries a CVSS score of 8.4, placing it in the high‑severity range. An EPSS score is not provided and the vulnerability is not listed in the CISA KEV catalog. The likely attack vector is inferred to involve an adversary supplying a plugin without a provenance file to the Helm installation process; however, the precise exploitation steps are not detailed in the available information.

Generated by OpenCVE AI on April 9, 2026 at 16:50 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Helm to version 4.1.4 or newer
  • Verify that installed plugins include a valid .prov file before use

Generated by OpenCVE AI on April 9, 2026 at 16:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-q5jf-9vfq-h4h7 Helm's plugin verification fails open when .prov is missing, allowing unsigned plugin install
History

Fri, 10 Apr 2026 09:00:00 +0000

Type Values Removed Values Added
First Time appeared Helm
Helm helm
Vendors & Products Helm
Helm helm

Thu, 09 Apr 2026 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 09 Apr 2026 15:30:00 +0000

Type Values Removed Values Added
Description Helm is a package manager for Charts for Kubernetes. From 4.0.0 to 4.1.3, Helm will install plugins missing provenance (.prov file) when signature verification is required. This vulnerability is fixed in 4.1.4.
Title Helm's plugin verification fails open when .prov is missing, allowing unsigned plugin install
Weaknesses CWE-636
References
Metrics cvssV4_0

{'score': 8.4, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Helm Helm
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-04-09T16:05:00.744Z

Reserved: 2026-04-01T18:48:58.937Z

Link: CVE-2026-35205

cve-icon Vulnrichment

Updated: 2026-04-09T16:04:50.634Z

cve-icon NVD

Status : Received

Published: 2026-04-09T16:16:27.720

Modified: 2026-04-09T16:16:27.720

Link: CVE-2026-35205

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-10T09:32:27Z

Weaknesses