CVE-2025-58366 is a critical vulnerability affecting Onyxia, a data science environment designed for Kubernetes, developed by InseeFrLab. The vulnerability exists in versions 4.6.0 through 4.8.0 of Onyxia-API, where the /public/catalogs endpoint, which is unauthenticated and publicly accessible, leaks credentials for private Helm repositories. This occurs when private Helm repositories are configured with usernames and passwords in the catalogs configuration. The exposure of these credentials allows an attacker to gain unauthorized access to private Helm repositories, potentially enabling them to retrieve or manipulate private charts and software packages. The vulnerability is classified under CWE-522 (Insufficiently Protected Credentials), indicating that sensitive credential information is not adequately safeguarded. The CVSS 4.0 score is 9.4 (critical), reflecting the high impact and ease of exploitation: the attack vector is network-based with no user interaction required, and no privileges or authentication are necessary to exploit the flaw. The vulnerability affects the confidentiality and integrity of private Helm repository credentials, and the scope is high because it affects all instances of Onyxia using private Helm repositories within the specified version range. The issue was fixed in version 4.9.0. There are no known exploits in the wild at the time of publication, but the critical severity and public exposure of the endpoint make it a significant risk for affected users.

For European organizations using Onyxia versions 4.6.0 through 4.8.0 with private Helm repositories, this vulnerability poses a severe risk. The leakage of private Helm repository credentials can lead to unauthorized access to proprietary or sensitive software packages, potentially allowing attackers to inject malicious code or disrupt software supply chains. This can compromise the integrity of data science workflows and Kubernetes deployments, leading to operational disruptions and data breaches. Organizations relying on Onyxia for critical data science tasks may face significant downtime and loss of trust if attackers exploit this vulnerability. Furthermore, the exposure of credentials could facilitate lateral movement within the network or provide a foothold for further attacks. Given the increasing adoption of Kubernetes and Helm in European enterprises and research institutions, especially in sectors like finance, healthcare, and government, the impact could be widespread and damaging.

European organizations should immediately upgrade Onyxia to version 4.9.0 or later, where the vulnerability is patched. Until the upgrade is performed, organizations should audit their Onyxia deployments to identify any use of private Helm repositories and consider disabling or restricting access to the /public/catalogs endpoint if possible. Implement network-level access controls to limit exposure of the Onyxia API to trusted internal networks only. Additionally, rotate credentials for private Helm repositories that may have been exposed to prevent unauthorized access. Employ monitoring and logging to detect unusual access patterns to Helm repositories and Onyxia APIs. Organizations should also review their Helm repository configurations to ensure credentials are stored and transmitted securely, using secrets management solutions integrated with Kubernetes. Finally, conduct security awareness training for DevOps and platform teams to recognize and remediate such credential exposure risks proactively.