Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

100 matches found

RedhatCVE
RedhatCVEadded 2026/05/18 7:59 p.m.9 views

CVE-2026-8752

A weakness has been identified in h2oai h2o-3 up to 7402. This vulnerability affects the function exec of the file h2o-core/src/main/java/water/rapids/ast/prims/misc/AstSetProperty.java of the component Rapids setproperty Primitive Handler. Executing a manipulation can lead to improper access...

6.9CVSS5.7AI score0.00081EPSS
Exploits0References1
NVD
NVDadded 2026/05/17 12:16 p.m.8 views

CVE-2026-8752

A weakness has been identified in h2oai h2o-3 up to 7402. This vulnerability affects the function exec of the file h2o-core/src/main/java/water/rapids/ast/prims/misc/AstSetProperty.java of the component Rapids setproperty Primitive Handler. Executing a manipulation can lead to improper access...

6.9CVSS0.00081EPSS
Exploits0References4
NVD
NVDadded 2026/05/17 12:16 p.m.9 views

CVE-2026-8751

A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the function importBinaryModel of the file h2o-core/src/main/java/hex/Model.java of the component JAR Handler. Performing a manipulation results in deserialization. The attack is possible to be carried out remotely. The...

9.8CVSS0.00038EPSS
Exploits0References4
EUVD
EUVDadded 2026/05/17 11:45 a.m.6 views

EUVD-2026-30699

A weakness has been identified in h2oai h2o-3 up to 7402. This vulnerability affects the function exec of the file h2o-core/src/main/java/water/rapids/ast/prims/misc/AstSetProperty.java of the component Rapids setproperty Primitive Handler. Executing a manipulation can lead to improper access...

6.9CVSS5.7AI score0.00081EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/05/17 11:45 a.m.36 views

CVE-2026-8752 h2oai h2o-3 Rapids setproperty Primitive AstSetProperty.java exec access control

A weakness has been identified in h2oai h2o-3 up to 7402. This vulnerability affects the function exec of the file h2o-core/src/main/java/water/rapids/ast/prims/misc/AstSetProperty.java of the component Rapids setproperty Primitive Handler. Executing a manipulation can lead to improper access...

6.9CVSS0.00081EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/05/17 11:30 a.m.3 views

CVE-2026-8751

A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the function importBinaryModel of the file h2o-core/src/main/java/hex/Model.java of the component JAR Handler. Performing a manipulation results in deserialization. The attack is possible to be carried out remotely. The...

7.5CVSS6.7AI score0.00038EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/17 11:30 a.m.7 views

CVE-2026-8751 h2oai h2o-3 JAR Model.java importBinaryModel deserialization

A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the function importBinaryModel of the file h2o-core/src/main/java/hex/Model.java of the component JAR Handler. Performing a manipulation results in deserialization. The attack is possible to be carried out remotely. The...

7.5CVSS6.7AI score0.00038EPSS
Exploits0References4
CVE
CVEadded 2026/05/17 11:30 a.m.17 views

CVE-2026-8751

Affected software: h2oai h2o-3 (versions before 7402). The issue lies in the JAR Handler component, specifically the importBinaryModel() function in h2o-core/src/main/java/hex/Model.java, where input manipulation can trigger deserialization. This enables remote exploitation, with the exploit publ...

9.8CVSS6.7AI score0.00038EPSS
Exploits0References4Affected Software1
EUVD
EUVDadded 2026/05/17 11:30 a.m.11 views

EUVD-2026-30697

A security flaw has been discovered in h2oai h2o-3 up to 7402. This affects the function importBinaryModel of the file h2o-core/src/main/java/hex/Model.java of the component JAR Handler. Performing a manipulation results in deserialization. The attack is possible to be carried out remotely. The...

7.5CVSS6.7AI score0.00038EPSS
Exploits0References4
NVD
NVDadded 2026/05/17 11:16 a.m.5 views

CVE-2026-8750

A vulnerability was identified in h2oai h2o-3 up to 7402. Affected by this issue is the function importFiles of the file h2o-core/src/main/java/water/persist/PersistNFS.java of the component ImportFile API. Such manipulation leads to information disclosure. The attack can be executed remotely. Th...

7.5CVSS0.00013EPSS
Exploits0References4
Cvelist
Cvelistadded 2026/05/17 10:45 a.m.35 views

CVE-2026-8750 h2oai h2o-3 ImportFile API PersistNFS.java importFiles information disclosure

A vulnerability was identified in h2oai h2o-3 up to 7402. Affected by this issue is the function importFiles of the file h2o-core/src/main/java/water/persist/PersistNFS.java of the component ImportFile API. Such manipulation leads to information disclosure. The attack can be executed remotely. Th...

6.9CVSS0.00013EPSS
Exploits0References4
EUVD
EUVDadded 2026/05/17 10:45 a.m.7 views

EUVD-2026-30694

A vulnerability was identified in h2oai h2o-3 up to 7402. Affected by this issue is the function importFiles of the file h2o-core/src/main/java/water/persist/PersistNFS.java of the component ImportFile API. Such manipulation leads to information disclosure. The attack can be executed remotely. Th...

6.9CVSS5.8AI score0.00013EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/05/17 12:0 a.m.9 views

PT-2026-41542

Name of the Vulnerable Software and Affected Versions h2oai h2o-3 versions prior to 7402 Description A weakness in the Rapids setproperty Primitive Handler allows remote attackers to bypass access controls. The issue resides in the exec function within the file...

6.9CVSS6.3AI score0.00081EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2026/05/17 12:0 a.m.7 views

PT-2026-41541

Name of the Vulnerable Software and Affected Versions h2oai h2o-3 versions prior to 7402 Description A flaw in the JAR Handler component allows remote attackers to trigger deserialization by manipulating the importBinaryModel function within the h2o-core/src/main/java/hex/Model.java file...

7.5CVSS7.3AI score0.00038EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2026/05/17 12:0 a.m.5 views

PT-2026-41540

Name of the Vulnerable Software and Affected Versions h2oai h2o-3 versions prior to 7402 Description A remote information disclosure issue exists within the ImportFile API. The flaw is located in the importFiles function of the h2o-core/src/main/java/water/persist/PersistNFS.java file...

6.9CVSS6.1AI score0.00013EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-6944

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00509EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2025-6978

Malicious code in bioql PyPI...

7.1CVSS6.9AI score0.00107EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-6902

Malicious code in bioql PyPI...

8.2CVSS8.2AI score0.00237EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-1927

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00117EPSS
Exploits1References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-30378

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00167EPSS
Exploits1References8
Rows per page
Query Builder