CVE-2023-6017

Summary

H2O included a reference to an S3 bucket that no longer existed allowing an attacker to take over the S3 bucket URL.

Affected Software

VendorProductVersion RangeStatus
h2oaih2oai/h2o-3unspecified <= latestaffected

Weaknesses

  • CWE-840: CWE-840 Business Logic Errors

ADP Enrichment

CVE Program Container

Additional References

References