GHSA-wj3h-wx8g-x699

Suggest an improvement
Source
https://github.com/advisories/GHSA-wj3h-wx8g-x699
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/02/GHSA-wj3h-wx8g-x699/GHSA-wj3h-wx8g-x699.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-wj3h-wx8g-x699
Aliases
  • CVE-2024-5986
Published
2026-02-02T12:31:14Z
Modified
2026-02-03T17:50:11.428294Z
Severity
  • 9.1 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H CVSS Calculator
Summary
H2O has an External Control of File Name or Path vulnerability
Details

A vulnerability in h2oai/h2o-3 version 3.46.0.1 allows remote attackers to write arbitrary data to any file on the server. This is achieved by exploiting the /3/Parse endpoint to inject attacker-controlled data as the header of an empty file, which is then exported using the /3/Frames/framename/export endpoint. The impact of this vulnerability includes the potential for remote code execution and complete access to the system running h2o-3, as attackers can overwrite critical files such as private SSH keys or script files.

Database specific 
{
    "nvd_published_at": "2026-02-02T11:16:16Z",
    "cwe_ids": [
        "CWE-73"
    ],
    "github_reviewed_at": "2026-02-02T22:03:46Z",
    "severity": "CRITICAL",
    "github_reviewed": true
}
References

Affected packages

Maven / ai.h2o:h2o-core

Package

Name
ai.h2o:h2o-core
View open source insights on deps.dev
Purl
pkg:maven/ai.h2o/h2o-core

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
3.46.0.1

Affected versions

0.*
0.1.3
0.1.3.1
0.1.4
0.1.5
0.1.6
0.1.8
0.1.9
0.1.10
0.1.11
0.1.12
0.1.13
0.1.14
0.1.15
0.1.16
0.1.17
0.1.18
0.1.19
0.1.20
0.1.21
0.1.22
0.1.23
0.1.24
0.1.25
0.2.3.5
0.2.3.6
0.3.0.2
3.*
3.0.0.5
3.0.0.8
3.0.0.12
3.0.0.16
3.0.0.18
3.0.0.19
3.0.0.22
3.0.0.25
3.0.0.26
3.0.0.30
3.0.1.2
3.0.1.3
3.0.1.4
3.2.0.1
3.2.0.2
3.2.0.3
3.2.0.4
3.2.0.5
3.2.0.6
3.2.0.7
3.2.0.8
3.2.0.9
3.4.0.1
3.6.0.1
3.6.0.2
3.6.0.3
3.6.0.4
3.6.0.5
3.6.0.7
3.6.0.8
3.6.0.10
3.6.0.11
3.6.0.12
3.8.0.1
3.8.0.2
3.8.0.3
3.8.0.4
3.8.0.5
3.8.0.6
3.8.1.1
3.8.1.2
3.8.1.3
3.8.1.4
3.8.2.1
3.8.2.2
3.8.2.3
3.8.2.4
3.8.2.5
3.8.2.6
3.8.2.7
3.8.2.8
3.8.2.9
3.8.2.11
3.8.3.1
3.8.3.2
3.8.3.3
3.8.3.4
3.10.0.1
3.10.0.2
3.10.0.3
3.10.0.4
3.10.0.5
3.10.0.6
3.10.0.7
3.10.0.8
3.10.0.9
3.10.0.10
3.10.1.1
3.10.1.2
3.10.2.1
3.10.2.2
3.10.3.1
3.10.3.2
3.10.3.3
3.10.3.4
3.10.3.5
3.10.3.6
3.10.4.1
3.10.4.2
3.10.4.3
3.10.4.4
3.10.4.5
3.10.4.6
3.10.4.7
3.10.4.8
3.10.4.9
3.10.4.11
3.10.4.12
3.10.5.1
3.10.5.2
3.10.5.3
3.10.5.4
3.12.0.1
3.14.0.1
3.14.0.2
3.14.0.3
3.14.0.4
3.14.0.5
3.14.0.6
3.14.0.7
3.16.0.1
3.16.0.2
3.16.0.3
3.16.0.4
3.16.0.5
3.16.0.6
3.16.0.7
3.16.0.8
3.16.0.9
3.16.0.10
3.16.0.11
3.16.0.12
3.18.0.1
3.18.0.2
3.18.0.3
3.18.0.4
3.18.0.5
3.18.0.6
3.18.0.7
3.18.0.8
3.18.0.9
3.18.0.10
3.18.0.11
3.20.0.1
3.20.0.2
3.20.0.3
3.20.0.4
3.20.0.5
3.20.0.6
3.20.0.7
3.20.0.8
3.20.0.9
3.20.0.10
3.22.0.1
3.22.0.2
3.22.0.3
3.22.0.4
3.22.0.5
3.22.1.1
3.22.1.2
3.22.1.3
3.22.1.4
3.22.1.5
3.22.1.6
3.24.0.1
3.24.0.2
3.24.0.3
3.24.0.4
3.24.0.5
3.26.0.1
3.26.0.2
3.26.0.3
3.26.0.4
3.26.0.5
3.26.0.6
3.26.0.8
3.26.0.9
3.26.0.10
3.26.0.11
3.28.0.1
3.28.0.2
3.28.0.3
3.28.0.4
3.28.1.1
3.28.1.2
3.28.1.3
3.30.0.1
3.30.0.2
3.30.0.3
3.30.0.4
3.30.0.5
3.30.0.6
3.30.0.7
3.30.1.1
3.30.1.2
3.30.1.3
3.32.0.1
3.32.0.2
3.32.0.3
3.32.0.4
3.32.0.5
3.32.1.1
3.32.1.2
3.32.1.3
3.32.1.4
3.32.1.5
3.32.1.6
3.32.1.7
3.34.0.1
3.34.0.3
3.34.0.4
3.34.0.5
3.34.0.6
3.34.0.7
3.34.0.8
3.35.0.2
3.36.0.1
3.36.0.2
3.36.0.3
3.36.0.4
3.36.1.1
3.36.1.2
3.36.1.3
3.36.1.4
3.36.1.5
3.38.0.1
3.38.0.2
3.38.0.3
3.38.0.4
3.40.0.1
3.40.0.2
3.40.0.3
3.40.0.4
3.42.0.1
3.42.0.2
3.42.0.3
3.42.0.4
3.44.0.1
3.44.0.2
3.44.0.3
3.46.0.1

Database specific

source 
"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/02/GHSA-wj3h-wx8g-x699/GHSA-wj3h-wx8g-x699.json"

PyPI / h2o

Package

Name
h2o
View open source insights on deps.dev
Purl
pkg:pypi/h2o

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
3.46.0.1

Affected versions

3.*
3.10.0.3
3.10.0.6
3.10.0.7
3.10.0.8
3.10.0.10
3.10.3.3
3.10.3.4
3.10.4.1
3.10.4.2
3.10.4.3
3.10.4.4
3.10.4.6
3.10.4.8
3.16.0.1
3.16.0.2
3.16.0.3
3.16.0.4
3.18.0.1
3.18.0.2
3.18.0.3
3.18.0.4
3.18.0.5
3.18.0.6
3.18.0.7
3.18.0.8
3.18.0.9
3.18.0.10
3.18.0.11
3.20.0.4
3.20.0.5
3.20.0.6
3.20.0.7
3.20.0.8
3.22.0.1
3.22.0.2
3.22.0.3
3.22.0.4
3.22.0.5
3.22.1.1
3.22.1.2
3.22.1.3
3.22.1.4
3.22.1.5
3.22.1.6
3.24.0.1
3.24.0.2
3.24.0.3
3.24.0.4
3.24.0.5
3.26.0.1
3.26.0.2
3.26.0.3
3.26.0.4
3.26.0.5
3.26.0.6
3.26.0.8
3.26.0.9
3.26.0.10
3.26.0.11
3.28.0.1
3.28.0.2
3.28.0.3
3.28.1.2
3.28.1.3
3.30.0.1
3.30.0.2
3.30.0.3
3.30.0.4
3.30.0.5
3.30.0.6
3.30.0.7
3.30.1.1
3.30.1.2
3.30.1.3
3.32.0.2
3.32.0.3
3.32.0.4
3.32.0.5
3.32.1.1
3.32.1.2
3.32.1.3
3.32.1.4
3.32.1.5
3.32.1.6
3.32.1.7
3.34.0.3
3.34.0.7
3.34.0.8
3.36.0.2
3.36.0.3
3.36.0.4
3.36.1.1
3.36.1.2
3.36.1.3
3.36.1.4
3.36.1.5
3.38.0.1
3.38.0.2
3.38.0.3
3.38.0.4
3.40.0.1
3.40.0.2
3.40.0.3
3.40.0.4
3.42.0.1
3.42.0.2
3.42.0.3
3.42.0.4
3.44.0.1
3.44.0.2
3.44.0.3
3.46.0.1

Database specific

source 
"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/02/GHSA-wj3h-wx8g-x699/GHSA-wj3h-wx8g-x699.json"