CVE-2021-32690 Overview
CVE-2021-32690 is an information disclosure vulnerability in Helm, the popular package manager for Kubernetes. In versions prior to 3.6.1, Helm improperly handles repository authentication credentials, allowing them to be passed to external domains referenced within a Helm repository's chart URLs. This credential leakage vulnerability (CWE-200) could enable attackers to harvest authentication credentials by hosting malicious chart references in repository index files.
Critical Impact
Repository credentials (username/password) can be inadvertently leaked to attacker-controlled domains through malicious chart URL references in index.yaml files, potentially compromising Kubernetes deployment pipelines and container registries.
Affected Products
- Helm versions prior to 3.6.1
- All Helm installations using authenticated repository access
- Kubernetes environments utilizing Helm chart deployments with repository credentials
Discovery Timeline
- 2021-06-16 - CVE-2021-32690 published to NVD
- 2024-11-21 - Last updated in NVD database
Technical Details for CVE-2021-32690
Vulnerability Analysis
This vulnerability represents a credential exposure flaw in Helm's repository handling mechanism. When users configure Helm repositories with authentication credentials, these credentials are intended to authenticate only with the configured repository domain. However, due to improper credential scoping, Helm would also pass these credentials to any external domains referenced in the chart's urls list within the repository's index.yaml file.
The vulnerability has network-based exploitability with no user interaction required, and the scope extends beyond the vulnerable component itself since leaked credentials could be used to access other systems.
Root Cause
The root cause lies in Helm's credential management logic when fetching chart packages. When Helm parses the index.yaml file from a repository, it extracts chart download URLs from the urls field. If a chart version specifies an external URL pointing to a different domain, Helm would incorrectly propagate the repository's authentication credentials to that external domain when fetching the chart.
This represents a failure to properly scope authentication credentials to the original repository domain, violating the principle that credentials should only be transmitted to the authenticated origin.
Attack Vector
The attack exploits Helm's trust in repository index files combined with improper credential handling. An attacker with the ability to modify a Helm repository's index.yaml file (either through a compromised repository or supply chain attack) can inject malicious chart URLs pointing to attacker-controlled servers.
When a victim with configured repository credentials pulls or installs the affected chart, their credentials are transmitted to the attacker's server. The attacker can then capture these credentials and potentially use them to access the legitimate repository, push malicious charts, or pivot to other systems where the same credentials are reused.
To audit for potential exposure, administrators should examine the index.yaml file of their configured repositories and check for any external domains in the urls list for chart versions. If external domains are found and those chart versions were pulled or installed, credentials may have been compromised.
Detection Methods for CVE-2021-32690
Indicators of Compromise
- Unexpected outbound HTTP/HTTPS connections from Helm client systems to unknown domains during chart operations
- Authentication headers or credentials appearing in network traffic to non-repository domains
- Unusual entries in Helm repository index.yaml files with external URLs in the urls field
- Failed authentication attempts on repositories using credentials that were previously working
Detection Strategies
- Monitor network traffic from systems running Helm for connections to unexpected domains during chart pull/install operations
- Audit Helm repository index.yaml files for chart entries with URLs pointing to external domains
- Implement egress filtering to alert on Helm-related traffic to unauthorized destinations
- Review access logs on Helm repositories for credential usage from unexpected IP addresses
Monitoring Recommendations
- Enable verbose logging for Helm operations to track repository interactions and URL fetches
- Implement network monitoring on Kubernetes management nodes to detect credential exfiltration attempts
- Set up alerts for modifications to cached index.yaml files in local Helm repositories
- Monitor for use of repository credentials from unusual geographic locations or IP ranges
How to Mitigate CVE-2021-32690
Immediate Actions Required
- Upgrade Helm to version 3.6.1 or later immediately on all systems
- Rotate credentials for all Helm repositories that were used with vulnerable versions
- Audit repository index.yaml files for any suspicious external URLs in chart definitions
- Review network logs for evidence of credentials being sent to external domains
Patch Information
The vulnerability has been fixed in Helm version 3.6.1. Organizations should upgrade to this version or later to remediate the vulnerability. The fix ensures that repository credentials are properly scoped and not transmitted to domains other than the configured repository.
For additional details, see the Helm v3.6.1 release notes and the GitHub Security Advisory GHSA-56hp-xqp3-w2jf.
Workarounds
- Manually audit index.yaml files for repositories before pulling or installing charts
- Avoid using username/password credentials with repositories until upgraded; consider alternative authentication methods
- Implement network-level controls to prevent credential leakage to unauthorized domains
- Use read-only credentials with minimal permissions for Helm repository access
# Audit repository index.yaml for external URLs
helm repo update
# Check your local cache for index files
cat ~/.cache/helm/repository/*-index.yaml | grep -E "urls:" -A 5 | grep -vE "^--$"
# Verify Helm version is patched
helm version --short
# Should show v3.6.1 or higher
Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.
