cvedb.io
CVE-2026-29955
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2026-04-13T19:16:39.137 · Last modified 2026-06-17T10:29:57.340

Summary

The `/registercrd` endpoint in KubePlus 4.14 in the kubeconfiggenerator component is vulnerable to command injection. The component uses `subprocess.Popen()` with `shell=True` parameter to execute shell commands, and the user-supplied `chartName` parameter is directly concatenated into the command string without any sanitization or validation. An attacker can inject arbitrary shell commands by crafting a malicious `chartName` parameter value.

Affected products

cloudark — kubeplus

Does this affect you?

Add your gear to cvedb and we'll alert you only when cloudark ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.