GHSA-w36w-948j-xhfw

Source

https://github.com/advisories/GHSA-w36w-948j-xhfw

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/07/GHSA-w36w-948j-xhfw/GHSA-w36w-948j-xhfw.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-w36w-948j-xhfw

Aliases

CVE-2024-6960

Published

2024-07-21T12:30:48Z

Modified

2024-11-25T19:50:24.585884Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
7.7 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVSS Calculator

Summary

H2O vulnerable to Deserialization of Untrusted Data

Details

The H2O machine learning platform uses "Iced" classes as the primary means of moving Java Objects around the cluster. The Iced format supports inclusion of serialized Java objects. When a model is deserialized, any class is allowed to be deserialized (no class whitelist). An attacker can construct a crafted Iced model that uses Java gadgets and leads to arbitrary code execution when imported to the H2O platform.

Database specific

{
    "nvd_published_at": "2024-07-21T10:15:04Z",
    "severity": "HIGH",
    "github_reviewed_at": "2024-07-22T14:42:24Z",
    "github_reviewed": true,
    "cwe_ids": [
        "CWE-502"
    ]
}

References

Affected packages

Maven / ai.h2o:h2o-core

Package

Name: ai.h2o:h2o-core; View open source insights on deps.dev
Purl: pkg:maven/ai.h2o/h2o-core

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

3.46.0.4

Affected versions

0.*

0.1.3

0.1.3.1

0.1.4

0.1.5

0.1.6

0.1.8

0.1.9

0.1.10

0.1.11

0.1.12

0.1.13

0.1.14

0.1.15

0.1.16

0.1.17

0.1.18

0.1.19

0.1.20

0.1.21

0.1.22

0.1.23

0.1.24

0.1.25

0.2.3.5

0.2.3.6

0.3.0.2

3.*

3.0.0.5

3.0.0.8

3.0.0.12

3.0.0.16

3.0.0.18

3.0.0.19

3.0.0.22

3.0.0.25

3.0.0.26

3.0.0.30

3.0.1.2

3.0.1.3

3.0.1.4

3.2.0.1

3.2.0.2

3.2.0.3

3.2.0.4

3.2.0.5

3.2.0.6

3.2.0.7

3.2.0.8

3.2.0.9

3.4.0.1

3.6.0.1

3.6.0.2

3.6.0.3

3.6.0.4

3.6.0.5

3.6.0.7

3.6.0.8

3.6.0.10

3.6.0.11

3.6.0.12

3.8.0.1

3.8.0.2

3.8.0.3

3.8.0.4

3.8.0.5

3.8.0.6

3.8.1.1

3.8.1.2

3.8.1.3

3.8.1.4

3.8.2.1

3.8.2.2

3.8.2.3

3.8.2.4

3.8.2.5

3.8.2.6

3.8.2.7

3.8.2.8

3.8.2.9

3.8.2.11

3.8.3.1

3.8.3.2

3.8.3.3

3.8.3.4

3.10.0.1

3.10.0.2

3.10.0.3

3.10.0.4

3.10.0.5

3.10.0.6

3.10.0.7

3.10.0.8

3.10.0.9

3.10.0.10

3.10.1.1

3.10.1.2

3.10.2.1

3.10.2.2

3.10.3.1

3.10.3.2

3.10.3.3

3.10.3.4

3.10.3.5

3.10.3.6

3.10.4.1

3.10.4.2

3.10.4.3

3.10.4.4

3.10.4.5

3.10.4.6

3.10.4.7

3.10.4.8

3.10.4.9

3.10.4.11

3.10.4.12

3.10.5.1

3.10.5.2

3.10.5.3

3.10.5.4

3.12.0.1

3.14.0.1

3.14.0.2

3.14.0.3

3.14.0.4

3.14.0.5

3.14.0.6

3.14.0.7

3.16.0.1

3.16.0.2

3.16.0.3

3.16.0.4

3.16.0.5

3.16.0.6

3.16.0.7

3.16.0.8

3.16.0.9

3.16.0.10

3.16.0.11

3.16.0.12

3.18.0.1

3.18.0.2

3.18.0.3

3.18.0.4

3.18.0.5

3.18.0.6

3.18.0.7

3.18.0.8

3.18.0.9

3.18.0.10

3.18.0.11

3.20.0.1

3.20.0.2

3.20.0.3

3.20.0.4

3.20.0.5

3.20.0.6

3.20.0.7

3.20.0.8

3.20.0.9

3.20.0.10

3.22.0.1

3.22.0.2

3.22.0.3

3.22.0.4

3.22.0.5

3.22.1.1

3.22.1.2

3.22.1.3

3.22.1.4

3.22.1.5

3.22.1.6

3.24.0.1

3.24.0.2

3.24.0.3

3.24.0.4

3.24.0.5

3.26.0.1

3.26.0.2

3.26.0.3

3.26.0.4

3.26.0.5

3.26.0.6

3.26.0.8

3.26.0.9

3.26.0.10

3.26.0.11

3.28.0.1

3.28.0.2

3.28.0.3

3.28.0.4

3.28.1.1

3.28.1.2

3.28.1.3

3.30.0.1

3.30.0.2

3.30.0.3

3.30.0.4

3.30.0.5

3.30.0.6

3.30.0.7

3.30.1.1

3.30.1.2

3.30.1.3

3.32.0.1

3.32.0.2

3.32.0.3

3.32.0.4

3.32.0.5

3.32.1.1

3.32.1.2

3.32.1.3

3.32.1.4

3.32.1.5

3.32.1.6

3.32.1.7

3.34.0.1

3.34.0.3

3.34.0.4

3.34.0.5

3.34.0.6

3.34.0.7

3.34.0.8

3.35.0.2

3.36.0.1

3.36.0.2

3.36.0.3

3.36.0.4

3.36.1.1

3.36.1.2

3.36.1.3

3.36.1.4

3.36.1.5

3.38.0.1

3.38.0.2

3.38.0.3

3.38.0.4

3.40.0.1

3.40.0.2

3.40.0.3

3.40.0.4

3.42.0.1

3.42.0.2

3.42.0.3

3.42.0.4

3.44.0.1

3.44.0.2

3.44.0.3

3.46.0.1

3.46.0.2

3.46.0.3

3.46.0.4