Stack-based Buffer Overflow Affecting istioctl-1.22 package, versions *


Severity

Recommended
low

Based on default assessment until relevant scores are available.

Threat Intelligence

Social Trends
EPSS
0.44% (36th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-MINIMOSLATEST-ISTIOCTL122-13309367
  • published6 Oct 2025
  • disclosed9 Apr 2025

Introduced: 9 Apr 2025

CVE-2025-32387  (opens in a new tab)
CWE-121  (opens in a new tab)
CWE-674  (opens in a new tab)

How to fix?

There is no fixed version for Minimos:latest istioctl-1.22.

NVD Description

Note: Versions mentioned in the description apply only to the upstream istioctl-1.22 package and not the istioctl-1.22 package as distributed by Minimos. See How to fix? for Minimos:latest relevant fixed versions and status.

Helm is a package manager for Charts for Kubernetes. A JSON Schema file within a chart can be crafted with a deeply nested chain of references, leading to parser recursion that can exceed the stack size limit and trigger a stack overflow. This issue has been resolved in Helm v3.17.3.

CVSS Base Scores

version 3.1