Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 6:23 a.m.7 views

CVE-2024-5979

In h2oai/h2o-3 version 3.46.0, the runtool command in the rapids component allows the main function of any class under the water.tools namespace to be called. One such class, MojoConvertTool, crashes the server when invoked with an invalid argument, causing a denial of service...

7.5CVSS7.5AI score0.00787EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2024/06/27 9:32 p.m.3 views

fluoriclogppka (>=0.1.0 <=0.2.7), h2o-wave-ml (>=0.3.0 <=0.5.0) +3 more potentially affected by CVE-2024-5979 via h2o (>=3.18.0.8 <=3.44.0.3)

h2o PYPI version =3.18.0.8, =0.1.0, =0.3.0, =0.4.5, =0.0.1, =0.0.102 - tsanalysis =0.1.0 Source cves: CVE-2024-5979 Source advisory: OSV:GHSA-58M3-RCVP-F9WW...

7.5CVSS7AI score0.00787EPSS
Exploits1
NVD
NVD
added 2024/06/27 7:15 p.m.38 views

CVE-2024-5979

In h2oai/h2o-3 version 3.46.0, the runtool command in the rapids component allows the main function of any class under the water.tools namespace to be called. One such class, MojoConvertTool, crashes the server when invoked with an invalid argument, causing a denial of service...

7.5CVSS0.00787EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/06/27 6:40 p.m.12 views

CVE-2024-5979 Denial of Service via Invalid Argument in h2oai/h2o-3

In h2oai/h2o-3 version 3.46.0, the runtool command in the rapids component allows the main function of any class under the water.tools namespace to be called. One such class, MojoConvertTool, crashes the server when invoked with an invalid argument, causing a denial of service...

7.5CVSS7.5AI score0.00787EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/06/27 6:40 p.m.32 views

CVE-2024-5979 Denial of Service via Invalid Argument in h2oai/h2o-3

In h2oai/h2o-3 version 3.46.0, the runtool command in the rapids component allows the main function of any class under the water.tools namespace to be called. One such class, MojoConvertTool, crashes the server when invoked with an invalid argument, causing a denial of service...

7.5CVSS0.00787EPSS
Exploits1References2
CVE
CVE
added 2024/06/27 6:40 p.m.65 views

CVE-2024-5979

CVE-2024-5979 affects h2oai/h2o-3 (version 3.46.0). The issue arises in the rapids component: the run_tool command can invoke the main() of any class under water.tools, enabling MojoConvertTool to crash the server and cause denial of service. Exploitation details are not provided in the sources; ...

7.5CVSS7.5AI score0.00787EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder