←back to thread

Helm local code execution via a malicious chart

(github.com)
171 points irke882 | 1 comments | 09 Jul 25 05:49 UTC | HN request time: 0.214s | source
Show context
codebastard ◴[09 Jul 25 08:12 UTC] No.44507439[source]
So the attack vector is:

- You have access to my file system

- You have access to the helm repository

You place malicious binaries outside the helm directory. Helm will now execute malicious code through the helm chart pointing outside the helm directory.

Don't I have already bigger problems if you have access to my file system to place there malicious code?

Is the danger here that one can get an execute permission? But if you can manipulate my helm chart why can you not also place the malicious code in the helm directory?

replies(4): >>44508017 #>>44508211 #>>44508268 #>>44512978 #
1. nimih ◴[09 Jul 25 17:54 UTC] No.44512978[source]
> But if you can manipulate my helm chart why can you not also place the malicious code in the helm directory?

If you can manipulate my helm chart, why not just do the RCE directly in my kubernetes cluster or whatever?