Vulnerability CVE-2024-1456
Published: 2024-04-16

Description:
An S3 bucket takeover vulnerability was identified in the h2oai/h2o-3 repository. The issue involves the S3 bucket 'http://s3.amazonaws.com/h2o-training', which was found to be vulnerable to unauthorized takeover.

Type:

CWE-840

 (Business Logic Errors)

 References:
https://huntr.com/bounties/7c1b7f27-52f3-4b4b-9d81-e277f5e0ab6b
Copyright 2024, cxsecurity.com

 

Back to Top