<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Cve-2026-35205 - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/tags/cve-2026-35205/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Tue, 02 Jan 2024 12:00:00 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/tags/cve-2026-35205/feed.xml" rel="self" type="application/rss+xml"/><item><title>Helm Plugin Verification Bypass Vulnerability</title><link>https://feed.craftedsignal.io/briefs/2024-01-helm-plugin-bypass/</link><pubDate>Tue, 02 Jan 2024 12:00:00 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2024-01-helm-plugin-bypass/</guid><description>Helm versions 4.0.0 through 4.1.3 fail to enforce plugin signature verification when the .prov file is missing, allowing installation of unsigned plugins and potentially leading to arbitrary code execution.</description><content:encoded><![CDATA[<p>Helm is a package manager for Kubernetes. A vulnerability exists in Helm versions 4.0.0 through 4.1.3 where the platform fails to verify plugin signatures if the <code>.prov</code> file is missing during plugin installation or update. This bypass allows malicious plugin authors to omit provenance data, circumventing the intended signature verification process. Successful exploitation enables the installation of unsigned plugins, which can then execute arbitrary code via plugin hooks. This is a significant concern for Kubernetes environments relying on Helm for package management and plugin security. The issue was patched in Helm v4.1.4.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li>An attacker crafts a malicious Helm plugin, omitting the <code>.prov</code> file to bypass signature verification.</li>
<li>The attacker distributes the malicious plugin through a compromised repository or social engineering.</li>
<li>A user attempts to install or update the plugin using <code>helm plugin install</code> or <code>helm plugin update</code>.</li>
<li>Due to the missing <code>.prov</code> file, Helm versions 4.0.0-4.1.3 skip signature verification.</li>
<li>The malicious plugin is installed successfully, despite lacking a valid signature.</li>
<li>The user interacts with the installed plugin or a Helm hook triggers execution of the plugin's code.</li>
<li>The malicious plugin executes arbitrary code on the Kubernetes cluster or the user's machine.</li>
<li>The attacker gains unauthorized access or control over the system, potentially leading to data exfiltration, resource compromise, or denial of service.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>Successful exploitation of this vulnerability can lead to arbitrary code execution within a Kubernetes environment. The impact could range from data exfiltration and resource hijacking to complete compromise of the cluster. Given the widespread adoption of Helm in managing Kubernetes applications, a significant number of organizations are potentially vulnerable. The vulnerability affects versions 4.0.0 through 4.1.3, requiring users to upgrade to version 4.1.4 or later to mitigate the risk.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Upgrade Helm to version 4.1.4 or later to patch CVE-2026-35205.</li>
<li>Implement manual validation that a plugin archive contains provenance data (<code>.prov</code> file) before installation as a short-term workaround.</li>
<li>Deploy the Sigma rule &quot;Detect Helm Plugin Installation Without Provenance&quot; to identify attempts to install plugins without <code>.prov</code> files.</li>
<li>Monitor Helm plugin installation events for unexpected processes or network connections originating from plugin directories using the &quot;Suspicious Process Execution from Helm Plugin Directory&quot; Sigma rule.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>helm</category><category>kubernetes</category><category>plugin</category><category>signature-bypass</category><category>cve-2026-35205</category></item></channel></rss>