GHSA-g48v-3p35-88jr
Suggest an improvement- Source
- https://github.com/advisories/GHSA-g48v-3p35-88jr
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/03/GHSA-g48v-3p35-88jr/GHSA-g48v-3p35-88jr.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-g48v-3p35-88jr
- Aliases
- Published
- 2025-03-20T12:32:48Z
- Modified
- 2025-03-20T20:39:02.259209Z
- Severity
-
- 8.2 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H CVSS Calculator
- Summary
- H2O Vulnerable to Arbitrary File Overwrite
- Details
-
In h2oai/h2o-3 version 3.46.0, the
/99/Models/{name}/jsonendpoint allows for arbitrary file overwrite on the target server. The vulnerability arises from theexportModelDetailsfunction inModelsHandler.java, where the user-controllablemexport.dirparameter is used to specify the file path for writing model details. This can lead to overwriting files at arbitrary locations on the host system. - Database specific
{ "github_reviewed": true, "github_reviewed_at": "2025-03-20T20:31:09Z", "severity": "HIGH", "nvd_published_at": "2025-03-20T10:15:43Z", "cwe_ids": [ "CWE-73" ] }- References
Affected packages
PyPI / h2o
Package
- Name
- h2o
- View open source insights on deps.dev
- Purl
- pkg:pypi/h2o
Affected versions
3.*
3.10.4.1
3.10.4.2
3.10.4.3
3.10.4.4
3.10.4.6
3.10.4.8
3.16.0.1
3.16.0.2
3.16.0.3
3.16.0.4
3.18.0.1
3.18.0.2
3.18.0.3
3.18.0.4
3.18.0.5
3.18.0.6
3.18.0.7
3.18.0.8
3.18.0.9
3.18.0.10
3.18.0.11
3.20.0.4
3.20.0.5
3.20.0.6
3.20.0.7
3.20.0.8
3.22.0.1
3.22.0.2
3.22.0.3
3.22.0.4
3.22.0.5
3.22.1.1
3.22.1.2
3.22.1.3
3.22.1.4
3.22.1.5
3.22.1.6
3.24.0.1
3.24.0.2
3.24.0.3
3.24.0.4
3.24.0.5
3.26.0.1
3.26.0.2
3.26.0.3
3.26.0.4
3.26.0.5
3.26.0.6
3.26.0.8
3.26.0.9
3.26.0.10
3.26.0.11
3.28.0.1
3.28.0.2
3.28.0.3
3.28.1.2
3.28.1.3
3.30.0.1
3.30.0.2
3.30.0.3
3.30.0.4
3.30.0.5
3.30.0.6
3.30.0.7
3.30.1.1
3.30.1.2
3.30.1.3
3.32.0.2
3.32.0.3
3.32.0.4
3.32.0.5
3.32.1.1
3.32.1.2
3.32.1.3
3.32.1.4
3.32.1.5
3.32.1.6
3.32.1.7
3.34.0.3
3.34.0.7
3.34.0.8
3.36.0.2
3.36.0.3
3.36.0.4
3.36.1.1
3.36.1.2
3.36.1.3
3.36.1.4
3.36.1.5
3.38.0.1
3.38.0.2
3.38.0.3
3.38.0.4
3.40.0.1
3.40.0.2
3.40.0.3
3.40.0.4
3.42.0.1
3.42.0.2
3.42.0.3
3.42.0.4
3.44.0.1
3.44.0.2
3.44.0.3
Maven / ai.h2o:h2o-core
Package
- Name
- ai.h2o:h2o-core
- View open source insights on deps.dev
- Purl
- pkg:maven/ai.h2o/h2o-core
Affected versions
3.*
3.10.4.1
3.10.4.2
3.10.4.3
3.10.4.4
3.10.4.5
3.10.4.6
3.10.4.7
3.10.4.8
3.10.4.9
3.10.4.11
3.10.4.12
3.10.5.1
3.10.5.2
3.10.5.3
3.10.5.4
3.12.0.1
3.14.0.1
3.14.0.2
3.14.0.3
3.14.0.4
3.14.0.5
3.14.0.6
3.14.0.7
3.16.0.1
3.16.0.2
3.16.0.3
3.16.0.4
3.16.0.5
3.16.0.6
3.16.0.7
3.16.0.8
3.16.0.9
3.16.0.10
3.16.0.11
3.16.0.12
3.18.0.1
3.18.0.2
3.18.0.3
3.18.0.4
3.18.0.5
3.18.0.6
3.18.0.7
3.18.0.8
3.18.0.9
3.18.0.10
3.18.0.11
3.20.0.1
3.20.0.2
3.20.0.3
3.20.0.4
3.20.0.5
3.20.0.6
3.20.0.7
3.20.0.8
3.20.0.9
3.20.0.10
3.22.0.1
3.22.0.2
3.22.0.3
3.22.0.4
3.22.0.5
3.22.1.1
3.22.1.2
3.22.1.3
3.22.1.4
3.22.1.5
3.22.1.6
3.24.0.1
3.24.0.2
3.24.0.3
3.24.0.4
3.24.0.5
3.26.0.1
3.26.0.2
3.26.0.3
3.26.0.4
3.26.0.5
3.26.0.6
3.26.0.8
3.26.0.9
3.26.0.10
3.26.0.11
3.28.0.1
3.28.0.2
3.28.0.3
3.28.0.4
3.28.1.1
3.28.1.2
3.28.1.3
3.30.0.1
3.30.0.2
3.30.0.3
3.30.0.4
3.30.0.5
3.30.0.6
3.30.0.7
3.30.1.1
3.30.1.2
3.30.1.3
3.32.0.1
3.32.0.2
3.32.0.3
3.32.0.4
3.32.0.5
3.32.1.1
3.32.1.2
3.32.1.3
3.32.1.4
3.32.1.5
3.32.1.6
3.32.1.7
3.34.0.1
3.34.0.3
3.34.0.4
3.34.0.5
3.34.0.6
3.34.0.7
3.34.0.8
3.35.0.2
3.36.0.1
3.36.0.2
3.36.0.3
3.36.0.4
3.36.1.1
3.36.1.2
3.36.1.3
3.36.1.4
3.36.1.5
3.38.0.1
3.38.0.2
3.38.0.3
3.38.0.4
3.40.0.1
3.40.0.2
3.40.0.3
3.40.0.4
3.42.0.1
3.42.0.2
3.42.0.3
3.42.0.4
3.44.0.1
3.44.0.2
3.44.0.3