Lookup for vulnerable packages by Package URL.
| Purl | pkg:maven/ai.h2o/h2o-core@0.1.6 |
|---|
| Type | maven |
|---|
| Namespace | ai.h2o |
|---|
| Name | h2o-core |
|---|
| Version | 0.1.6 |
|---|
| Qualifiers |
|
|---|
| Subpath | |
|---|
| Is_vulnerable | true |
|---|
| Next_non_vulnerable_version | null |
|---|
| Latest_non_vulnerable_version | null |
|---|
| Affected_by_vulnerabilities |
| 0 |
| url |
VCID-b1re-5nwx-wfb2 |
| vulnerability_id |
VCID-b1re-5nwx-wfb2 |
| summary |
H2O.ai H2O through 3.46.0.4 allows attackers to arbitrarily set the JDBC URL, leading to deserialization attacks, file reads, and command execution. Exploitation can occur when an attacker has access to post to the ImportSQLTable URI with a JSON document containing a connection_url property with any typical JDBC Connection URL attack payload such as one that uses queryInterceptors. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2024-45758, GHSA-hrmc-jmp7-mpm2
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-b1re-5nwx-wfb2 |
|
| 1 |
| url |
VCID-cu6c-k4e7-puf7 |
| vulnerability_id |
VCID-cu6c-k4e7-puf7 |
| summary |
A critical remote code execution vulnerability exists in the unauthenticated REST API endpoint /99/ImportSQLTable in H2O-3 version 3.46.0.9 and prior. The vulnerability arises due to insufficient security controls in the parameter blacklist mechanism, which only targets MySQL JDBC driver-specific dangerous parameters. An attacker can bypass these controls by switching the JDBC URL protocol to jdbc:postgresql: and exploiting PostgreSQL JDBC driver-specific parameters such as socketFactory and socketFactoryArg. This allows unauthenticated attackers to execute arbitrary code on the H2O-3 server with the privileges of the H2O-3 process. The issue is resolved in version 3.46.0.10. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2026-3960, GHSA-qmcv-hh7c-3m56
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cu6c-k4e7-puf7 |
|
| 2 |
| url |
VCID-faw8-tfz2-eudq |
| vulnerability_id |
VCID-faw8-tfz2-eudq |
| summary |
A deserialization vulnerability exists in h2oai/h2o-3 versions <= 3.46.0.8, allowing attackers to read arbitrary system files and execute arbitrary code. The vulnerability arises from improper handling of JDBC connection parameters, which can be exploited by bypassing regular expression checks and using double URL encoding. This issue impacts all users of the affected versions. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2025-6544, GHSA-5w3j-gwgh-4rfv
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-faw8-tfz2-eudq |
|
| 3 |
| url |
VCID-nfcx-t5c9-5bbt |
| vulnerability_id |
VCID-nfcx-t5c9-5bbt |
| summary |
A vulnerability in the h2oai/h2o-3 REST API versions 3.46.0.4 allows unauthenticated remote attackers to execute arbitrary code via deserialization of untrusted data. The vulnerability exists in the endpoints POST /99/ImportSQLTable and POST /3/SaveToHiveTable, where user-controlled JDBC URLs are passed to DriverManager.getConnection, leading to deserialization if a MySQL or PostgreSQL driver is available in the classpath. This issue is fixed in version 3.47.0. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2024-10553, GHSA-h7xg-cmpp-48hf
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nfcx-t5c9-5bbt |
|
| 4 |
| url |
VCID-rgnx-9tfe-6kh3 |
| vulnerability_id |
VCID-rgnx-9tfe-6kh3 |
| summary |
A vulnerability in h2oai/h2o-3 version 3.46.0.1 allows remote attackers to write arbitrary data to any file on the server. This is achieved by exploiting the `/3/Parse` endpoint to inject attacker-controlled data as the header of an empty file, which is then exported using the `/3/Frames/framename/export` endpoint. The impact of this vulnerability includes the potential for remote code execution and complete access to the system running h2o-3, as attackers can overwrite critical files such as private SSH keys or script files. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2024-5986, GHSA-wj3h-wx8g-x699
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rgnx-9tfe-6kh3 |
|
| 5 |
| url |
VCID-vme1-up9z-yqaw |
| vulnerability_id |
VCID-vme1-up9z-yqaw |
| summary |
The H2O machine learning platform uses "Iced" classes as the primary means of moving Java Objects around the cluster. The Iced format supports inclusion of serialized Java objects. When a model is deserialized, any class is allowed to be deserialized (no class whitelist). An attacker can construct a crafted Iced model that uses Java gadgets and leads to arbitrary code execution when imported to the H2O platform. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://github.com/h2oai/h2o-3 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
7.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
HIGH |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
|
| url |
https://github.com/h2oai/h2o-3 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-6960, GHSA-w36w-948j-xhfw
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
8.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vme1-up9z-yqaw |
|
| 6 |
|
|
|---|
| Fixing_vulnerabilities |
|
|---|
| Risk_score | 4.5 |
|---|
| Resource_url | http://public2.vulnerablecode.io/packages/pkg:maven/ai.h2o/h2o-core@0.1.6 |
|---|