Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS13MzZ3LTk0OGoteGhmd84AA-DC
H2O vulnerable to Deserialization of Untrusted Data
The H2O machine learning platform uses "Iced" classes as the primary means of moving Java Objects around the cluster. The Iced format supports inclusion of serialized Java objects. When a model is deserialized, any class is allowed to be deserialized (no class whitelist). An attacker can construct a crafted Iced model that uses Java gadgets and leads to arbitrary code execution when imported to the H2O platform.
Permalink: https://github.com/advisories/GHSA-w36w-948j-xhfwJSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS13MzZ3LTk0OGoteGhmd84AA-DC
Source: GitHub Advisory Database
Origin: Unspecified
Severity: High
Classification: General
Published: about 2 months ago
Updated: about 1 month ago
CVSS Score: 7.5
CVSS vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Identifiers: GHSA-w36w-948j-xhfw, CVE-2024-6960
References:
- https://nvd.nist.gov/vuln/detail/CVE-2024-6960
- https://research.jfrog.com/vulnerabilities/h2o-model-deserialization-rce-jfsa-2024-001035518
- https://github.com/advisories/GHSA-w36w-948j-xhfw
Affected Packages
maven:ai.h2o:h2o-core
Dependent packages: 33Dependent repositories: 40
Downloads:
Affected Version Ranges: <= 3.46.0.4
No known fixed version
All affected versions: