EXECUTIVE SUMMARY:
A high-severity flaw has been identified in Fleet, a GitOps engine used for Kubernetes deployments. Tracked as CVE-2024-52284 with a CVSS score of 7.7, the issue exposes sensitive Helm values stored in plain text within BundleDeployment resources. This flaw creates risks of credential disclosure and lack of encryption at rest, which could allow unauthorized users with certain permissions to gain access to cloud services, databases, or other sensitive systems. The impact of the exposure depends on the scope and power of the leaked credentials.